CVE Catalog

CVE-2026-56348

CriticalCVSS 9.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.25%

16th percentile — higher than 16% of all known CVEs

Summary

n8n versions before 2.20.0 contain a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint that allows authenticated users to bypass Allowed HTTP Request Domains restrictions. Attackers with credential access can cause the n8n server to issue HTTP requests with credentials to unauthorized hosts.

Risk Assessment

The organization is at risk of sensitive credential leakage, which could lead to unauthorized access to systems and data. If exploited, this vulnerability could allow attackers to gain access to confidential information.

Recommendation

It is recommended to upgrade n8n to version 2.20.0 or later to mitigate this vulnerability. Additionally, conducting a credential access audit and monitoring server logs for potential abuse is advisable.

Original NVD description (English source)

n8n before 2.20.0 contains a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint that allows authenticated users to bypass Allowed HTTP Request Domains restrictions. Attackers with credential access can cause the n8n server to issue HTTP requests with credentials to unauthorized hosts, exfiltrating sensitive authentication data.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS