By vendor

N8n-Mcp vulnerabilities

Known CVEs affecting N8n-Mcp products, prioritized by severity, with SEC.co remediation and detection guidance.

2 published vulnerabilities

  • CVE-2026-45707HIGH 8.1

    n8n-MCP is a server component that bridges AI assistants to n8n automation workflows. In multi-tenant deployments (where one operator hosts multiple customer accounts), versions before 2.51.2 had a critical credential-handling flaw: when requests lacked the headers specifying which tenant's n8n instance to target, the system fell back to the operator's own administrative credentials instead of rejecting the request or requiring proper tenant identification. An authenticated user in one tenant could exploit this to execute operations against the operator's primary n8n instance, potentially compromising the entire service.

  • CVE-2026-45582MEDIUM 6.5

    n8n-MCP, an AI assistant integration layer for the n8n workflow automation platform, fails to fully sanitize sensitive data before transmitting workflow information to its telemetry backend. The flaw allows fragments of URLs and embedded credentials—such as API keys, tenant IDs, and signed request parameters—to leak into the project's anonymous telemetry collection. This occurs when users configure HTTP-Request-style nodes with sensitive parameters in their URLs. The vulnerability affects versions before 2.51.3, where the telemetry sanitizer was enhanced to properly redact these values before transmission.