A newly disclosed critical vulnerability, tracked as CVE-2026-25049, in the workflow automation platform n8n, allows authenticated users to execute arbitrary system commands on the underlying server by exploiting weaknesses in the platform’s expression evaluation mechanism. With a CVSS score of 9.4, the issue is classified as critical and poses
First seen on thecyberexpress.com
Jump to article: thecyberexpress.com/critical-n8n-vulnerability-cve-2026-25049-rce/
