Improper Authentication in n8n - #VU135229

 

Improper Authentication in n8n - #VU135229

Published: June 25, 2026


Vulnerability identifier: #VU135229
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: N/A
CWE-ID: CWE-287
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: n8n
Affected software:
n8n

Detailed vulnerability description

The vulnerability allows a remote user to authenticate as another user and access their account.

The vulnerability exists due to improper access control in the token exchange identity resolution logic when processing tokens from multiple trusted issuers. A remote user can present a valid token with a matching JWT subject claim to authenticate as another user and access their account.

This issue only affects instances where the token exchange feature is enabled and more than one trusted external issuer is configured.


Remediation

Install security update from vendor's website.

Sources