CVE-2025-57749 MEDIUM

CVE-2025-57749: n8n has a symlink traversal vulnerability in "Read/Write File" node allows access to restricted files

Vendor N8N-Io
Product n8n
Weakness CWE-59
Published August 20, 2025
Last update August 21, 2025

CVSS base score

6.5/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

n8n is a workflow automation platform. Before 1.106.0, a symlink traversal vulnerability was discovered in the Read/Write File node in n8n. While the node attempts to restrict access to sensitive directories and files, it does not properly account for symbolic links (symlinks). An attacker with the ability to create symlinks—such as by using the Execute Command node—could exploit this to bypass the intended directory restrictions and read from or write to otherwise inaccessible paths. Users of n8n.cloud are not impacted. Affected users should update to version 1.106.0 or later.

Key dates

02Disclosure timeline

August 20, 2025 CVE published
August 21, 2025 Record updated