Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Untriaged
Permalink CVE-2026-25056
created 2 months, 2 weeks ago
n8n Arbitrary File Write leading to RCE in n8n Merge Node

n8n is an open source workflow automation platform. Prior to versions 1.118.0 and 2.4.0, a vulnerability in the Merge node's SQL Query mode allowed authenticated users with permission to create or modify workflows to write arbitrary files to the n8n server's filesystem potentially leading to remote code execution. This issue has been patched in versions 1.118.0 and 2.4.0.

Affected products

n8n
  • ==< 2.4.0
  • ==< 1.118.0

Matching in nixpkgs

pkgs.n8n

Free and source-available fair-code licensed workflow automation tool

  • nixos-unstable -
  • nixos-25.11 1.120.4

pkgs.n8n-nodes-carbonejs

n8n community node for rendering Word templates using Carbone.js

  • nixos-unstable -

Package maintainers