CVE-2026-56775
n8n - Incorrect OAuth Scope Validation in Evaluation Test Runs Endpoints
CVSS Score
5.4
EPSS Score
0.0%
EPSS Percentile
0th
n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization vulnerability in three mutating evaluation test-run endpoints that authorize state-changing actions using the workflow:read scope instead of the action-appropriate workflow:execute scope. On instances using Advanced Permissions (Enterprise/Cloud) with projects and viewer roles, an authenticated user with the project:viewer role can start new evaluation test runs, cancel in-flight runs, and delete run records for workflows they only have read access to.
| CWE | CWE-863 |
| Vendor | n8n |
| Product | n8n |
| Published | Jul 8, 2026 |
| Last Updated | Jul 8, 2026 |
Stay Ahead of the Next One
Get instant alerts for n8n n8n
Be the first to know when new medium vulnerabilities affecting n8n n8n are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
Low
Affected Versions
n8n / n8n
0 < 1.123.55
n8n / n8n
0 < 2.26.2
n8n / n8n
0 < 2.25.7
References
Credits
๐ YLChen-007