Description
n8n is an open source workflow automation platform. Prior to versions 1.123.33 and 2.17.5, the dynamic-node-parameters endpoints did not verify whether the authenticated caller was authorized to use a supplied credential reference. An authenticated user with access to a shared workflow could supply a foreign credential ID in the request body, causing the backend to decrypt and use that credential in a helper execution path where the caller also controls the destination URL. This allowed the caller to force the backend to authenticate against attacker-controlled infrastructure using a credential belonging to another user, effectively exfiltrating a reusable API key. The issue is not limited to any single node type; any node that resolves credentials dynamically through these endpoints may be affected. This issue has been patched in versions 1.123.33, 2.17.5, and 2.18.0.
Published: 2026-05-04
Score: 7.1 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in the dynamic-node-parameters endpoints, which did not verify that an authenticated caller was authorized to use a supplied credential reference. An authenticated user with access to a shared workflow can supply a foreign credential ID in the request body; the backend then decrypts and uses that credential in a helper execution path where the caller also controls the destination URL. This causes the backend to authenticate against attacker‑controlled infrastructure using another user's credential, allowing the attacker to exfiltrate a reusable API key. The flaw is not limited any single node type, so any dynamic credential resolution can be affected.

Affected Systems

Affected vendors include n8n‑io with the n8n product. Any version before 1.123.33 and before 2.17.5 (and before 2.18.0) is vulnerable. The issue has been patched in n8n 1.123.33, 2.17.5, and 2.18.0 and later releases.

Risk and Exploitability

The CVSS score of 7.1 indicates high severity and the lack of an available EPSS score suggests limited data on exploitation frequency, while the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is an authenticated user exploiting shared workflows; the attacker must have access to a workflow that references credentials. Because the flaw involves a missing authorization check (CWE‑862), an attacker can obtain a valid credential from another user, enabling the backend to make unauthorized requests to attacker‑controlled destinations.

Generated by OpenCVE AI on May 4, 2026 at 20:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade n8n to version 1.123.33 or newer, or version 2.17.5/2.18.0 or newer, to apply the patch.
  • If an immediate upgrade is not possible, restrict access to shared workflows and disable or tightly control usage of dynamic-node-parameters endpoints to prevent users from supplying foreign credential IDs.
  • Monitor system logs for unauthorized credential decryption or use of foreign credential references, and audit workflow sharing permissions for potential abuse.

Generated by OpenCVE AI on May 4, 2026 at 20:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 04 May 2026 20:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 04 May 2026 19:00:00 +0000

Type Values Removed Values Added
Description n8n is an open source workflow automation platform. Prior to versions 1.123.33 and 2.17.5, the dynamic-node-parameters endpoints did not verify whether the authenticated caller was authorized to use a supplied credential reference. An authenticated user with access to a shared workflow could supply a foreign credential ID in the request body, causing the backend to decrypt and use that credential in a helper execution path where the caller also controls the destination URL. This allowed the caller to force the backend to authenticate against attacker-controlled infrastructure using a credential belonging to another user, effectively exfiltrating a reusable API key. The issue is not limited to any single node type; any node that resolves credentials dynamically through these endpoints may be affected. This issue has been patched in versions 1.123.33, 2.17.5, and 2.18.0.
Title n8n: Credential Authorization Bypass in dynamic-node-parameters Allows Foreign API Key Replay
Weaknesses CWE-862
References
Metrics cvssV4_0

{'score': 7.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:L/SC:L/SI:L/SA:L'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-05-04T19:41:52.763Z

Reserved: 2026-04-25T05:37:12.117Z

Link: CVE-2026-42226

cve-icon Vulnrichment

Updated: 2026-05-04T19:41:49.371Z

cve-icon NVD

Status : Received

Published: 2026-05-04T19:16:04.563

Modified: 2026-05-04T19:16:04.563

Link: CVE-2026-42226

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-04T20:30:08Z

Weaknesses