CVE-2026-49444
Analyzed
Analyzed - Analysis Complete
Code Execution in n8n Workflow Automation Platform
Vulnerability report for CVE-2026-49444, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-06-23
Last updated on: 2026-06-26
Assigner: GitHub, Inc.
Description
Description
n8n is an open source workflow automation platform. Prior to 1.123.48, 2.21.8, and 2.22.4, an authenticated user with permission to create or modify workflows containing a Python Code Node could escape the sandbox and achieve arbitrary code execution on the task runner container. This vulnerability is fixed in 1.123.48, 2.21.8, and 2.22.4.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| n8n | n8n | From 2.0.0 (inc) to 2.21.8 (exc) |
| n8n | n8n | From 2.22.0 (inc) to 2.22.4 (exc) |
| n8n | n8n | to 1.123.48 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-20 | The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. |