N8n security fixes after Pillar findings
Security Patch Release
Summary
Hide ▲
Show ▼
n8n released an initial patch update in December 2025 and nine security fixes in early 2026 to address reported flaws in the workflow automation platform. The update cycle covered both n8n Cloud and self-hosted n8n instances, reducing exposure across deployments. The release matters because the affected platform can hold sensitive credentials and connect to many downstream systems.
Related Happenings
CISA orders FCEB agencies to patch n8n by March 25, 2026
Public Sector Action
First: 12.03.2026 07:18
Last: 12.03.2026 07:18
Sources 1
About this happening:
CISA ordered **FCEB agencies** to patch their **n8n** instances by **March 25, 2026**, turning a vulnerable workflow-automation platform into a federal remediation deadline. The m...
CISA orders FCEB agencies to patch n8n by March 25, 2026
Public Sector ActionAbout this happening: CISA ordered **FCEB agencies** to patch their **n8n** instances by **March 25, 2026**, turning a vulnerable workflow-automation platform into a federal remediation deadline. The m...
N8n 2.4.0 security update for sandbox-escape flaw (CVE-2026-25049)
Security Patch Release
First: 04.02.2026 23:14
Last: 04.02.2026 23:14
Sources 1
About this happening:
**n8n** released **version 2.4.0** on **January 12, 2026**, fixing a **sandbox-escape bypass** that could let authenticated workflow editors achieve **remote code execution** on a...
N8n 2.4.0 security update for sandbox-escape flaw (CVE-2026-25049)
Security Patch ReleaseAbout this happening: **n8n** released **version 2.4.0** on **January 12, 2026**, fixing a **sandbox-escape bypass** that could let authenticated workflow editors achieve **remote code execution** on a...
Microsoft January 2026 Patch Tuesday 114-flaw security update (multiple vulnerabilities)
Security Patch Release
First: 13.01.2026 20:34
Last: 13.01.2026 20:34
Sources 1
About this happening:
**Microsoft** released its **January 2026 Patch Tuesday** update, fixing **114 flaws** and raising urgency because it includes **one actively exploited** issue and **two publicly...
Microsoft January 2026 Patch Tuesday 114-flaw security update (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **Microsoft** released its **January 2026 Patch Tuesday** update, fixing **114 flaws** and raising urgency because it includes **one actively exploited** issue and **two publicly...
Malicious npm packages masquerading as n8n integrations to steal OAuth credentials
Malware Activity
First: 12.01.2026 18:39
Last: 12.01.2026 18:39
Sources 1
About this happening:
A set of **eight npm packages** impersonating **n8n integrations** is stealing **developers' OAuth credentials**, putting linked services and workflow access at risk. One package...
Malicious npm packages masquerading as n8n integrations to steal OAuth credentials
Malware ActivityAbout this happening: A set of **eight npm packages** impersonating **n8n integrations** is stealing **developers' OAuth credentials**, putting linked services and workflow access at risk. One package...
N8n self-hosted community nodes disable guidance
Advisory/Mitigation
First: 12.01.2026 18:39
Last: 12.01.2026 18:39
Sources 1
About this happening:
n8n warned **self-hosted operators** to **disable community nodes** because malicious npm packages can run code with the same access as n8n and steal decrypted credentials. The gu...
N8n self-hosted community nodes disable guidance
Advisory/MitigationAbout this happening: n8n warned **self-hosted operators** to **disable community nodes** because malicious npm packages can run code with the same access as n8n and steal decrypted credentials. The gu...
Timeline
-
12.03.2026 17:28 2 articles · 2mo ago
n8n releases fixes for critical Cloud and self-hosted vulnerabilities
Mitigation Patch Updaten8n released an initial patch update in December 2025 and followed it with nine security fixes in early 2026 after Pillar Security reported two maximum-severity sandbox escape vulnerabilities affecting n8n Cloud and self-hosted n8n instances.
Show sources
- Critical Zero-Click Flaw in n8n Allows Full Server Compromise — www.infosecurity-magazine.com — 12.03.2026 17:28
- Critical Zero-Click Flaw in n8n Allows Full Server Compromise — www.infosecurity-magazine.com — 12.03.2026 17:28