n8n Users Urged to Patch CVSS 10.0 Full System Takeover...

9.9 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Description

A critical vulnerability (CVE-2026-21877) found by Upwind affects n8n automation tools. Learn why researchers are urging users to update to version 1.121.3 immediately to prevent remote code execution.

Visit Original Source

Basic Information

ID HACKREAD:7D495D3301CC24C0C5B8BEDDA994957D

Published Jan 8, 2026 at 20:02

{
    "lastseen": "2026-01-08T20:05:07",
    "description": "A critical vulnerability (CVE-2026-21877) found by Upwind affects n8n automation tools. Learn why researchers are urging users to update to version 1.121.3 immediately to prevent remote code execution.",
    "published": "2026-01-08T20:02:35",
    "modified": "2026-01-08T20:02:35",
    "type": "hackread",
    "title": "n8n Users Urged to Patch CVSS 10.0 Full System Takeover Vulnerability",
    "source": "",
    "references": "",
    "id": "HACKREAD:7D495D3301CC24C0C5B8BEDDA994957D",
    "bulletinFamily": "blog",
    "cwe": null,
    "cvelist": [
        "CVE-2026-21877"
    ],
    "sourceData": "",
    "sourceHref": "",
    "cvss": {
        "score": 9.9,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "https://hackread.com/n8n-users-patch-full-system-takeover-vulnerability/",
    "category_name": "News",
    "post_link": "",
    "product": "",
    "version": "",
    "vendor": "",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

n8n Users Urged to Patch CVSS 10.0 Full System Takeover Vulnerability_HACKREAD:7D495D3301CC24C0C5B8BEDDA994957D

Description

Basic Information

💭 Join the Security Discussion ❌ Cancel Reply