top of page
perceptive_background_267k.jpg

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.2, when ENABLE_MULTI_TENANT=tru…

Published:

28 May 2026 at 22:00:00

Alert date:

29 May 2026 at 15:02:48

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Identity & Access

CVE-2026-45707 affects n8n-MCP server prior to version 2.51.2 in multi-tenant deployments. When ENABLE_MULTI_TENANT=true, requests missing x-n8n-url or x-n8n-key headers fall back to operator credentials. This allows authenticated tenants to execute management calls against the operator's n8n instance instead of their own. The vulnerability only affects HTTP-mode multi-tenant deployments and is fixed in version 2.51.2.

Technical details

Mitigation steps:

Affected products:

n8n-MCP

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-45707
https://github.com/czlonkowski/n8n-mcp/commit/853015d0897be7cf2d9d4726de195c938e4395ab
https://github.com/czlonkowski/n8n-mcp/releases/tag/v2.51.2
https://github.com/czlonkowski/n8n-mcp/security/advisories/GHSA-jxx9-px88-pj69

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page