216.73.216.133

CVE-2025-71380

· Published 04/07/2026 04:16 · Author: The MITRE Corporation

Labels: CVE-2025-71380

Essential information

Published
04/07/2026 04:16
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
8.8 HIGH (v3.1) 8.7 HIGH (v4.0)
CISA KEV
No
CWE
CWE-284
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

The Execute Command node in n8n allows authenticated users to execute arbitrary commands on the host system where n8n runs. Attackers with user access or compromised credentials can exploit this node to run malicious commands, potentially leading to data exfiltration, service disruption, or complete system compromise.

NVD status

NVD
View on NVD