{"id":230027,"date":"2026-01-28T21:21:42","date_gmt":"2026-01-29T03:21:42","guid":{"rendered":"https:\/\/lifeboat.com\/blog\/2026\/01\/new-sandbox-escape-flaw-exposes-n8n-instances-to-rce-attacks"},"modified":"2026-01-28T21:21:42","modified_gmt":"2026-01-29T03:21:42","slug":"new-sandbox-escape-flaw-exposes-n8n-instances-to-rce-attacks","status":"publish","type":"post","link":"https:\/\/lifeboat.com\/blog\/2026\/01\/new-sandbox-escape-flaw-exposes-n8n-instances-to-rce-attacks","title":{"rendered":"New sandbox escape flaw exposes n8n instances to RCE attacks"},"content":{"rendered":"<p><a class=\"aligncenter blog-photo\" href=\"https:\/\/lifeboat.com\/blog.images\/new-sandbox-escape-flaw-exposes-n8n-instances-to-rce-attacks.jpg\"><\/a><\/p>\n<p>Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.<\/p>\n<p>Identified as <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-1470\" target=\"_blank\" rel=\"nofollow noopener\">CVE-2026\u20131470<\/a> and <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2026-0863\" target=\"_blank\" rel=\"nofollow noopener\">CVE-2026\u20130863<\/a>, the vulnerabilities were discovered and reported by researchers at DevSecOps company JFrog.<\/p>\n<p>Despite requiring authentication, CVE-2026\u20131470 received a critical severity score of 9.9 out of 10. JFrog explained that the critical rating was due to arbitrary code execution occurring in n8n\u2019s main node, which allows complete control over the n8n instance.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host. Identified as CVE-2026\u20131470 and CVE-2026\u20130863, the vulnerabilities were discovered and reported by researchers at DevSecOps company JFrog. Despite requiring authentication, CVE-2026\u20131470 received a critical severity score of 9.9 [\u2026]<\/p>\n","protected":false},"author":427,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6,1492],"tags":[],"class_list":["post-230027","post","type-post","status-publish","format-standard","hentry","category-robotics-ai","category-security"],"_links":{"self":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/230027","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/users\/427"}],"replies":[{"embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/comments?post=230027"}],"version-history":[{"count":0,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/posts\/230027\/revisions"}],"wp:attachment":[{"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/media?parent=230027"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/categories?post=230027"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lifeboat.com\/blog\/wp-json\/wp\/v2\/tags?post=230027"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}