Improper access control in n8n - #VU137157
Published: July 8, 2026
n8n
Detailed vulnerability description
The vulnerability allows a remote user to escalate privileges.
The vulnerability exists due to improper access control in the AI Agents node-execution tool when chatting with an agent that has node tools enabled. A remote user can chat with a crafted agent to escalate privileges.
On affected instances, the issue can expose credential secrets from the project, and if command- or file-capable tool nodes are enabled, exploitation may be extended to arbitrary command execution on the host.