CVE-2026-56348
CriticalCVSS 9.1Exploitation Probability (EPSS)
Low risk16th percentile — higher than 16% of all known CVEs
Summary
n8n versions before 2.20.0 contain a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint that allows authenticated users to bypass Allowed HTTP Request Domains restrictions. Attackers with credential access can cause the n8n server to issue HTTP requests with credentials to unauthorized hosts.
Risk Assessment
The organization is at risk of sensitive credential leakage, which could lead to unauthorized access to systems and data. If exploited, this vulnerability could allow attackers to gain access to confidential information.
Recommendation
It is recommended to upgrade n8n to version 2.20.0 or later to mitigate this vulnerability. Additionally, conducting a credential access audit and monitoring server logs for potential abuse is advisable.
Original NVD description (English source)
n8n before 2.20.0 contains a credential exfiltration vulnerability in the POST /rest/dynamic-node-parameters/options endpoint that allows authenticated users to bypass Allowed HTTP Request Domains restrictions. Attackers with credential access can cause the n8n server to issue HTTP requests with credentials to unauthorized hosts, exfiltrating sensitive authentication data.

