Description
n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workflows could inject CLI flags on the Git node's Push operation allowing an attacker to read arbitrary files from the n8n server potentially leading to full compromise. This vulnerability is fixed in 1.123.43, 2.22.1, and 2.20.7.
Published: 2026-06-23
Score: 9.4 Critical
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability exists in n8n’s Git node Push operation. Prior to versions 1.123.43, 2.22.1, and 2.20.7, an authenticated user who can create or modify workflows could inject command‑line flags into this operation, enabling the server to read arbitrary files on the host. This flaw, identified as CWE‑88, allows attackers to obtain sensitive data or potentially compromise the entire system. The issue has been fixed in the aforementioned releases.

Affected Systems

The affected product is n8n, the open‑source workflow automation platform by n8n‑io.123.43, 2.22.1, and 2.20.7 are vulnerable. The issue is fixed in those releases, and later versions are considered safe.

Risk and Exploitability

The CVSS score of 9.4 marks this issue as critical. Based on the description, it is inferred that the attacker must have authentication and permission to create or modify workflows; no privileged system accounts are required. An attacker can inject malicious CLI flags during a Push operation to read arbitrary files on the host. The EPSS score is not available, so the current exploitation probability cannot be quantified, but the high severity and lack of privilege restriction imply a significant risk. The vulnerability is not listed in CISA KEV, yet the potential for full system compromise warrants urgent attention.

Generated by OpenCVE AI on June 24, 2026 at 07:34 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade to n8n 1.123.43, 2.22.1, or 2.20.7 or later to remove the vulnerable code.
  • Limit or revoke workflow creation and modification permissions for untrusted or low‑privilege users so that only trusted accounts can modify or create workflows.
  • If an immediate upgrade is not possible, disable or remove the Git node’s Push functionality from all existing workflows, or disable the node entirely via configuration to prevent flag injection.

Generated by OpenCVE AI on June 24, 2026 at 07:34 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-57g9-58c2-xjg3 n8n Has an Arbitrary File Read via Git Node
History

Tue, 23 Jun 2026 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 23 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
Description n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workflows could inject CLI flags on the Git node's Push operation allowing an attacker to read arbitrary files from the n8n server potentially leading to full compromise. This vulnerability is fixed in 1.123.43, 2.22.1, and 2.20.7.
Title n8n: Arbitrary File Read via Git Node
Weaknesses CWE-88
References
Metrics cvssV4_0

{'score': 9.4, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-06-23T17:33:24.292Z

Reserved: 2026-05-07T19:20:44.692Z

Link: CVE-2026-44790

cve-icon Vulnrichment

Updated: 2026-06-23T17:33:17.013Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T07:45:04Z

Weaknesses
  • CWE-88

    Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')