Authorization Bypass Through User-Controlled Key in n8n | CVE-2026-45732

Q: How to fix?

Upgrade n8n to version 1.123.43, 2.20.7-exp.0, 2.21.1 or higher.

Introduced: 14 May 2026

NewCVE-2026-45732 (opens in a new tab) CWE-639 (opens in a new tab)

How to fix?

Upgrade n8n to version 1.123.43, 2.20.7-exp.0, 2.21.1 or higher.

Overview

n8n is a n8n Workflow Automation Tool

Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key via the OAuth1 and OAuth2 credential reconnect endpoints. A user with readonly access to shared credentials can overwrite stored OAuth token material for the shared credentials by initiating a reconnect flow with an external account they control, causing workflows to execute under the attacker's OAuth identity and enabling data exfiltration to attacker-controlled external services and persistent takeover of shared integrations.

References

CVSS Base Scores

version 4.0

version 3.1

Attack Vector (AV)
Network
Attack Complexity (AC)
Low
Attack Requirements (AT)
None
Privileges Required (PR)
Low
User Interaction (UI)
None

Confidentiality (VC)
None
Integrity (VI)
High
Availability (VA)
None

Confidentiality (SC)
Low
Integrity (SI)
High
Availability (SA)
None

Authorization Bypass Through User-Controlled Key Affecting n8n package, versions <1.123.43>=2.0.0-rc.0 <2.20.7-exp.0>=2.21.0 <2.21.1

Severity

Do your applications use this vulnerable package?

Snyk Learn

Introduced: 14 May 2026

How to fix?

Overview

References

CVSS Base Scores

Snyk