{"data":{"id":"ef69cdfd-662a-4deb-853d-22f331359a1b","title":"GHSA-xvh5-5qg4-x9qp: n8n has In-Process Memory Disclosure in its Task Runner","summary":"n8n (a workflow automation tool) has a security flaw where authenticated users who can create or modify workflows could access uninitialized memory buffers (chunks of computer memory that haven't been cleared), potentially exposing sensitive data like secrets or tokens from previous requests in the same process. This vulnerability only affects systems where Task Runners are enabled and can be limited in external runner mode (where the runner operates in a separate, isolated process).","solution":"The issue has been fixed in n8n versions >= 1.123.22, >= 2.10.1, and >= 2.9.3. Users should upgrade to one of these versions or later. If upgrading is not immediately possible, administrators can temporarily limit workflow creation and editing permissions to fully trusted users only, or use external runner mode by setting `N8N_RUNNERS_MODE=external`. The source notes these workarounds do not fully remediate the risk and should only be short-term measures.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-xvh5-5qg4-x9qp","publishedAt":"2026-03-25T17:00:25.000Z","cveId":"CVE-2026-27496","cweIds":null,"cvssScore":null,"cvssSeverity":"high","severity":"high","attackType":["data_extraction"],"issueType":"vulnerability","affectedPackages":["n8n@>= 2.0.0-rc.0, < 2.9.3 (fixed: 2.9.3)","n8n@>= 2.10.0, < 2.10.1 (fixed: 2.10.1)","n8n@< 1.123.22 (fixed: 1.123.22)"],"affectedVendors":["LangChain"],"affectedVendorsRaw":["n8n"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-03-25T17:00:25.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality"],"aiComponentTargeted":"framework","llmSpecific":false,"classifierConfidence":0.85,"researchCategory":null,"atlasIds":null}}