Incorrect Authorization Affecting n8n package, versions <1.123.55>=2.0.0 <2.25.7>=2.26.0 <2.26.2


Severity

Recommended
0.0
medium
0
10

CVSS assessment by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
0.16% (6th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk Learn

Learn about Incorrect Authorization vulnerabilities in an interactive lesson.

Start learning
  • Snyk IDSNYK-JS-N8N-17900553
  • published9 Jul 2026
  • disclosed8 Jul 2026
  • credit34selen

Introduced: 8 Jul 2026

NewCVE-2026-56776  (opens in a new tab)
CWE-863  (opens in a new tab)

How to fix?

Upgrade n8n to version 1.123.55, 2.25.7, 2.26.2 or higher.

Overview

n8n is a n8n Workflow Automation Tool

Affected versions of this package are vulnerable to Incorrect Authorization in the evaluations test run creation endpoint (POST /workflows/{workflowId}/test-runs/new), which authorizes against the workflow:read scope instead of workflow:execute. A user with read-only workflow:read access to a workflow can trigger a real evaluation test run that executes the workflow through the internal runner by calling this endpoint, producing unintended outbound API calls, data mutations, or other side effects in connected systems. Exploitation affects instances with the Evaluations feature active and RBAC project roles in use, where a user holds workflow:read without workflow:execute.

CVSS Base Scores

version 4.0
version 3.1