Description

n8n is an open source workflow automation platform. From 1.36.0 to before 2.2.0, the Webhook node’s IP whitelist validation performed partial string matching instead of exact IP comparison. As a result, an incoming request could be accepted if the source IP address merely contained the configured whitelist entry as a substring. This issue affected instances where workflow editors relied on IP-based access controls to restrict webhook access. Both IPv4 and IPv6 addresses were impacted. An attacker with a non-whitelisted IP could bypass restrictions if their IP shared a partial prefix with a trusted address, undermining the intended security boundary. This vulnerability is fixed in 2.2.0.

INFO

Published Date :

2026-01-13T18:43:20.189Z

Last Modified :

2026-01-13T19:00:47.909Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-68949 vulnerability.

Vendors Products
N8n
  • N8n
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-68949.

URL Resource
https://github.com/n8n-io/n8n/commit/11f8597d4ad69ea3b58941573997fdbc4de1fec5 cve-icon cve-icon
https://github.com/n8n-io/n8n/issues/23399 cve-icon cve-icon
https://github.com/n8n-io/n8n/pull/23399 cve-icon cve-icon
https://github.com/n8n-io/n8n/security/advisories/GHSA-w96v-gf22-crwp cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact