New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands

Updated on January 6, 2026

A new critical security vulnerability has been disclosed in n8n, an open-source workflow automation platform, that could enable an authenticated attacker to execute arbitrary system commands on the underlying host.
The vulnerability, tracked as CVE-2025-68668, is rated 9.9 on the CVSS scoring system. It has been described as a case of a protection mechanism failure.
It affects n8n versions from…

Read the rest of the story at Read More

Source: The Hacker News

November 1, 2025 Uncategorized

ASD Warns of Ongoing BADCANDY Attacks Ex...

September 19, 2025 Uncategorized

17,500 Phishing Domains Target 316 Brand...

July 30, 2025 Uncategorized

New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands

Related posts

ASD Warns of Ongoing BADCANDY Attacks Ex...

17,500 Phishing Domains Target 316 Brand...

Hackers Use Facebook Ads to Spread JSCEA...

Leave a Comment Cancel reply

Recent News

MuddyWater Launches RustyWater RAT via Spear-Phishing Across Middle East Sectors

Europol Arrests 34 Black Axe Members in Spain Over €5.9M Fraud and Organized Crime

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

Cybersecurity Predictions 2026: The Hype We Can Ignore (And the Risks We Can’t)

Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions

CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024

FBI Warns North Korean Hackers Using Malicious QR Codes in Spear-Phishing

WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes