{"data":{"id":"c03e08a8-fda3-4d4f-b593-45608a7d0ab1","title":"GHSA-pmqw-72cg-wx85: n8n: Credential Exfiltration via Permission Bypass","summary":"A vulnerability in n8n (a workflow automation tool) allowed member-level users with editor access to shared workflows to access credentials (stored login information) they shouldn't have permission to use, because permission checks weren't fully enforced on certain API endpoints. This only affected instances where workflow sharing was enabled and workflows had been shared with member-level editors.","solution":"The issue has been fixed in n8n versions 1.123.55, 2.25.7, and 2.26.2. Users should upgrade to one of these versions or later to remediate the vulnerability. If upgrading is not immediately possible, administrators can temporarily restrict workflow sharing to fully trusted users only and audit shared workflows for unexpected credential references or recent modifications, though these workarounds do not fully remediate the risk.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-pmqw-72cg-wx85","publishedAt":"2026-06-16T23:02:05.000Z","cveId":"CVE-2026-54307","cweIds":null,"cvssScore":null,"cvssSeverity":"high","severity":"high","attackType":["data_extraction"],"issueType":"vulnerability","affectedPackages":["n8n@>= 2.0.0-rc.0, < 2.25.7 (fixed: 2.25.7)","n8n@>= 2.26.0, < 2.26.2 (fixed: 2.26.2)","n8n@< 1.123.55 (fixed: 1.123.55)"],"affectedVendors":[],"affectedVendorsRaw":["n8n"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-06-16T23:02:05.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality","integrity"],"aiComponentTargeted":"api","llmSpecific":false,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":null}}