Description

n8n is a workflow automation platform. Prior to version 1.99.1, an authorization vulnerability was discovered in the /rest/executions/:id/stop endpoint of n8n. An authenticated user can stop workflow executions that they do not own or that have not been shared with them, leading to potential business disruption. This issue has been patched in version 1.99.1. A workaround involves restricting access to the /rest/executions/:id/stop endpoint via reverse proxy or API gateway.

INFO

Published Date :

2025-07-03T20:08:54.093Z

Last Modified :

2025-07-03T20:18:25.270Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-52554 vulnerability.

Vendors Products
N8n
  • N8n
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-52554.

URL Resource
https://github.com/dudanogueira/n8n/commit/ca2f90c7fbaa1d661ade2f45d587d9469bc287e1 cve-icon cve-icon
https://github.com/n8n-io/n8n/commit/e5edc60e344924230baafb11fa1f0af788e9ca9a cve-icon cve-icon
https://github.com/n8n-io/n8n/pull/16405 cve-icon cve-icon
https://github.com/n8n-io/n8n/security/advisories/GHSA-gq57-v332-7666 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact