n8n

n8n, a popular open-source workflow automation and integration platform, contains a critical remote code execution vulnerability with a CVSS score of 9.8. The flaw can be exploited remotely without authentication or user interaction, allowing attackers to achieve complete compromise including data theft, system manipulation, and service disruption. Security teams should prioritize patching when the vendor's June 2026 deadline passes and monitor for active exploitation attempts against n8n deployments, particularly those exposed to the internet.