Saiu recentemente uma CVE no N8N pauleira, não autenticada e com um artigo MT foda, que vai aprimorar teu code review
Artigo:
https://www.cyera.com/research-labs/ni8mare-unauthenticated-remote-code-execution-in-n8n-cve-2026-21858
Github Advisories:
https://github.com/advisories/GHSA-v4pr-fm98-w9pg
https://github.com/n8n-io/n8n/security/advisories/GHSA-v4pr-fm98-w9pg
Artigo:
https://www.cyera.com/research-labs/ni8mare-unauthenticated-remote-code-execution-in-n8n-cve-2026-21858
Github Advisories:
https://github.com/advisories/GHSA-v4pr-fm98-w9pg
https://github.com/n8n-io/n8n/security/advisories/GHSA-v4pr-fm98-w9pg
Cyera
Ni8mare - Unauthenticated Remote Code Execution in n8n (CVE-2026-21858) | Cyera Research Labs
Cyera Research Labs has discovered a "worst-case scenario" flaw in n8n, the industry-leading platform for AI and workflow automation. Dubbed "Ni8mare," this vulnerability (CVE-2026-21858) allows an unauthenticated remote attacker to gain full administrative…
