CVE-2025-52554 MEDIUM

CVE-2025-52554: n8n Improper Authorization in Workflow Execution Stop Endpoint Allows Terminating Other Users’ Workflows

Vendor N8N-Io
Product n8n
Weakness CWE-862 · Missing authorization
Published July 3, 2025
Last update July 3, 2025

CVSS base score

4.9/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:H

What the vulnerability does

01Description

n8n is a workflow automation platform. Prior to version 1.99.1, an authorization vulnerability was discovered in the /rest/executions/:id/stop endpoint of n8n. An authenticated user can stop workflow executions that they do not own or that have not been shared with them, leading to potential business disruption. This issue has been patched in version 1.99.1. A workaround involves restricting access to the /rest/executions/:id/stop endpoint via reverse proxy or API gateway.

Key dates

02Disclosure timeline

July 3, 2025 CVE published
July 3, 2025 Record updated