Security12 views

Critical n8n Vulnerability: Patch Now to Prevent Remote Attacks

A critical security flaw, tracked as CVE-2026-21858 (nicknamed "ni8mare"), has been discovered in the n8n workflow automation platform. The vulnerability puts approximately 100,000 servers at risk of Remote Code Execution (RCE).

The Risk

The "ni8mare" flaw allows unauthenticated attackers to gain full access to host machines. By exploiting how n8n processes webhooks, hackers can manipulate HTTP headers to overwrite internal application variables. This leads to arbitrary file reading and full system compromise without requiring login credentials.

How to Stay Safe

The vulnerability affects various older versions of the software. To secure your infrastructure, you must update n8n to version 1.121.0 or higher immediately.

Security researchers at The Register report that public-facing instances are high-priority targets. Ensure your deployment is patched to prevent unauthorized access and data breaches.

More

View all
BusinessApril 19, 2026

TikTok Seeks Central Bank Approval to Offer Financial Services in Brazil

TikTok seeks Central Bank approval to offer loans, bank accounts, and payment services in Brazil. Learn how the app plans to enter the financial market.

AIApril 19, 2026

Anthropic Fights Claude Code Leak as GitHub Spinoffs Explode

Anthropic moves to block 8,000+ GitHub repos as Claude Code leak goes viral. Spinoffs like claw-code break records amid source code rewriting efforts.

PopularApril 19, 2026

Apple Removes Vibe Coding App 'Anything' from App Store

Apple removes the vibe coding app 'Anything' from the App Store due to violations regarding external code execution and App Store review guidelines.