Infosecurity Magazine reports that open-source automation platform n8n has been impacted by a pair of maximum severity sandbox escape flaws that could enable total server takeover and credential compromise.Abusing both vulnerabilities, which were addressed last month as part of n8n version 2.4.0, could allow prompt interception, AI output tampering, traffic diversions, and sensitive data exfiltration, according to Pillar Security researchers. Threat actors could also use a single breached account on n8n cloud to infiltrate shared Kubernetes infrastructure and other customers' data. Apart from immediately updating vulnerable n8n instances, organizations should also rotate encryption keys and credentials, as well as audit and monitor workflows."If you can create a workflow in n8n, you can own the server. For attackers, this means access to OpenAI keys, Anthropic credentials, AWS accounts, and the ability to intercept or modify AI interactions in real-time all while the workflows continue functioning normally," said Pillar Security researcher Eilon Cohen.
Vulnerability Management, Patch/Configuration Management, AI/ML
n8n vulnerabilities raise takeover risks for AI orchestration users

(Credit: Azulblue – stock.adobe.com)
An In-Depth Guide to AI
Get essential knowledge and practical strategies to use AI to better your security program.
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



