CVE-2026-42226

Name of the Vulnerable Software and Affected Versions n8n versions prior to 1.123.33 n8n versions prior to 2.17.5

Description An issue in the 'dynamic-node-parameters' endpoints allows an authenticated user with access to a shared workflow to supply a foreign credential ID in the request body. Because the system fails to verify if the caller is authorized to use the supplied credential reference, the backend decrypts and uses that credential in a helper execution path where the caller also controls the destination URL. This enables the caller to force the backend to authenticate against attacker-controlled infrastructure using a credential belonging to another user, leading to the exfiltration of reusable API keys. This issue affects any node that resolves credentials dynamically through these endpoints.

Recommendations Update to version 1.123.33 or newer. Update to version 2.17.5 or newer.