CVE-2025-68949

Name of the Vulnerable Software and Affected Versions n8n versions 1.36.0 through 2.1.9

Description n8n is a workflow automation platform where the Webhook node’s IP whitelist validation incorrectly used partial string matching instead of exact IP comparison. This allowed incoming requests to be accepted if the source IP address contained the configured whitelist entry as a substring. Both IPv4 and IPv6 addresses were impacted, potentially allowing an attacker with a non-whitelisted IP to bypass access restrictions if their IP shared a partial prefix with a trusted address. The issue affected instances relying on IP-based access controls to restrict webhook access.

Recommendations Update to version 2.2.0 or later.