js · n8nHeads-up
n8n MongoDB Node Find And Replace Operation Vulnerability
A security vulnerability in the MongoDB node's Find And Replace operation allows authenticated users with workflow edit access to supply a malicious filter valu
What changed
A security vulnerability in the MongoDB node's Find And Replace operation allows authenticated users with workflow edit access to supply a malicious filter value, leading to unintended document matching and overwriting with attacker-controlled content.
Who it affects
n8n instances where authenticated users have workflow edit access and the MongoDB node is enabled.
What to do today
Upgrade to n8n version 2.24.0 or later. If immediate upgrade is not possible, limit workflow creation/editing permissions to trusted users and disable the MongoDB node via NODES_EXCLUDE environment variable.
The trail
Collected→
Audited→
Written→
Published
Source
GitHub Advisory · n8n