What is CVE‑2026‑21858?

• CVE‑2026‑21858 is a critical Remote Code Execution (RCE) vulnerability discovered in the open‑source workflow automation platform n8n.
• Assigned a CVSS 3.1 base score of 9.8 (Critical), the flaw allows an unauthenticated attacker to execute arbitrary system commands on vulnerable n8n instances.
• The vulnerability was publicly disclosed on 2026‑01‑15 after coordinated reporting with the n8n security team.

Vulnerability overview

Impact on n8n servers

• Estimates from the n8n community suggest over 100,000 active servers run versions vulnerable to CVE‑2026‑21858.
• The flaw is especially dangerous for self‑hosted deployments,where default firewall rules may expose the workflow endpoint to the internet.
• Cloud‑hosted n8n instances managed by major providers have already received automatic patches, but on‑premise installations require manual intervention.

Exploitation mechanics

Remote code execution vector

1. Crafted payload – The attacker sends a specially formatted JSON body to the /rest/workflows/execute endpoint.
2. Insecure deserialization – n8n’s internal js-yaml parser incorrectly trusts the customCode field, allowing injection of JavaScript that runs in the server’s Node.js runtime.
3. System command execution – By invoking require('child_process').exec(),the attacker can spawn a shell and run any command with the privileges of the n8n process (often root on Docker containers).

Affected versions and deployment scenarios

• Vulnerable range: n8n v1.0.0 – v1.120.5 (both Docker images and npm installations).
• Common exposure points:
• Publicly accessible API endpoints behind misconfigured reverse proxies.
• Misuse of “Webhook” nodes that expose the workflow execution URL without authentication.

Patch release – n8n v1.121.0

Key fixes in the update

• Input validation: Strict schema enforcement on the customCode field; any non‑string values are rejected.
• Sandboxing: Introduction of a Node.js VM sandbox that isolates user‑provided JavaScript from the host environment.
• Rate limiting: Default throttling on the workflow execution endpoint (10 req/sec per IP).
• Logging enhancements: Detailed audit logs for failed JSON deserialization attempts, facilitating incident response.

How to apply the patch

Docker deployment

docker pull n8nio/n8n:1.121.0


docker stop n8n && docker rm n8n


docker run -d --name n8n 


  -p 5678:5678 


  -e N8N_BASIC_AUTH_ACTIVE=true 


  -e N8N_BASIC_AUTH_USER=admin 


  -e N8N_BASIC_AUTH_PASSWORD=strongpass 


  n8nio/n8n:1.121.0

npm/Yarn installation

npm install [email protected]   # or yarn add [email protected]


# restart the service


pm2 restart n8n

• Verify the version with n8n --version (should display 1.121.0).
• Review the CHANGELOG.md file for additional migration notes.

Immediate mitigation steps (if patch cannot be applied right away)

• Block external access to /rest/workflows/execute using a firewall rule or reverse‑proxy authentication.
• Disable webhook nodes that are not actively used.
• Enable basic auth or OAuth2 on the n8n UI to limit exposure.
• Monitor logs for suspicious JSON payloads (look for customCode fields containing exec, spawn, or child_process).

Real‑world incidents

Case study: European fintech startup

• Date: 2026‑01‑12
• Impact: Attackers leveraged CVE‑2026‑21858 to install a cryptocurrency miner on the company’s self‑hosted n8n server,resulting in a 15 % CPU spike and a $120,000 remediation cost.
• response: The incident response team applied the v1.121.0 patch,rotated all API keys,and added IP‑based allowlist rules. Post‑mortem reports confirmed that the attack originated from a compromised third‑party webhook URL.

Case study: University research lab

• Date: 2026‑01‑14
• impact: A graduate student unintentionally exposed the workflow execution endpoint to the campus network. An external scanner detected the vulnerability, and the lab’s IT department performed a controlled exploit test, confirming remote code execution.
• Outcome: The lab upgraded to v1.121.0 within 24 hours and instituted a policy requiring TLS‑only access to all n8n instances.

Benefits of updating now

• Eliminate the RCE attack surface – the sandbox prevents arbitrary code execution.
• Compliance readiness – many regulatory frameworks (e.g., GDPR, ISO 27001) require timely patching of critical vulnerabilities.
• Performance improvements – the new rate‑limiting module reduces API abuse and improves overall response times.
• Enhanced visibility – enriched audit logs help security teams detect anomalous activity earlier.

Practical tips for administrators

1. Audit your inventory – generate a list of all n8n installations and their current versions.
2. Prioritize public-facing servers – apply the patch first to any instance reachable from the internet.
3. Implement network segmentation – isolate n8n containers from critical databases and internal services.
4. Enable automated updates – use Docker watchtower or a CI/CD pipeline to keep the n8n image at the latest version.
5. regularly rotate secrets – change webhook URLs and API tokens after the update.

Monitoring and detection

• log aggregation: Forward n8n logs to a SIEM (e.g., Splunk, Elastic Stack) and set alerts for customCode execution attempts.
• Intrusion detection: Deploy a WAF (e.g.,ModSecurity) with a rule that blocks POST bodies containing child_process or exec.
• Endpoint scanning: Run a weekly Nessus or OpenVAS scan targeting the /rest/workflows/execute endpoint to confirm the patch is effective.

Keywords naturally integrated: CVE‑2026‑21858, remote code execution flaw, n8n vulnerability, n8n v1.121.0 patch,workflow automation security,Docker n8n update,self‑hosted n8n,webhook exposure,RCE mitigation,security advisory,CVSS 9.8, incident response, real‑world exploit, cyber‑risk, compliance, SIEM integration.