Home | SANReN CSIRT

43AA 6E9A 54EE B550 D830 EF7A 36EE 72FB 8AD1 F5CC

n8n Vulnerabilities (March 2026)

Heloise Meyer | March 12, 2026, 3:15 p.m.

Further information on the critical n8n vulnerabilities (CVE-2026-27577 and CVE-2026-27493)

Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials [Ravie Lakshmanan, The Hacker News]

Zero Click Unauthenticated RCE in n8n: A Contact Form That Executes Shell Commands [Eilon Cohen, Pillar Security]

CVE-2026-27577 Detail [NIST, NIST]

CVE-2026-27493 Detail [NIST, NIST]

Contact Us:

csirt {a} sanren.ac.za

CSIRT:	0x36EE72FB8AD1F5CC
Heloise:	0xD367253D12C5BBBC
Zoya:	0x14D11B78C23A3DEF
Anele:	0x1EC1265990F8D258