n8n Warns of CVSS 10.0 RCE Vulnerability Affecting Self-Hosted and Cloud Versions

Updated on January 7, 2026

Open-source workflow automation platform n8n has warned of a maximum-severity security flaw that, if successfully exploited, could result in authenticated remote code execution (RCE).
The vulnerability, which has been assigned the CVE identifier CVE-2026-21877, is rated 10.0 on the CVSS scoring system.
“Under certain conditions, an authenticated user may be able to cause untrusted code to be…

Read the rest of the story at Read More

Source: The Hacker News

June 6, 2025 Uncategorized

New Atomic macOS Stealer Campaign Exploi...

June 2, 2025 Uncategorized

⚡ Weekly Recap: APT Intrusions, AI Mal...

July 30, 2025 Uncategorized

n8n Warns of CVSS 10.0 RCE Vulnerability Affecting Self-Hosted and Cloud Versions

Related posts

New Atomic macOS Stealer Campaign Exploi...

⚡ Weekly Recap: APT Intrusions, AI Mal...

Critical Dahua Camera Flaws Enable Remot...

Leave a Comment Cancel reply

Recent News

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

Cybersecurity Predictions 2026: The Hype We Can Ignore (And the Risks We Can’t)

Trend Micro Apex Central RCE Flaw Scores 9.8 CVSS in On-Prem Windows Versions

CISA Retires 10 Emergency Cybersecurity Directives Issued Between 2019 and 2024

FBI Warns North Korean Hackers Using Malicious QR Codes in Spear-Phishing

WhatsApp Worm Spreads Astaroth Banking Trojan Across Brazil via Contact Auto-Messaging

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes

ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories

The State of Trusted Open Source