THE Known Exploited Vulnerabilities Catalog entry for n8n lists CVE-2025-68613, describing an improper control of dynamically managed code resources that allows remote code execution in its workflow expression evaluation system. According to CVE-2025-68613, the vulnerability is related to CWE-913 and its exploitation status is marked as unknown for ransomware campaigns.
The page recommends applying mitigations per vendor instructions, following relevant guidance for cloud services, or discontinuing use of the product if mitigations are unavailable. The entry notes that the vulnerability was added to the catalog on 11 March 2026, with a due date of 25 March 2026. Additional references include advisory links and the NVD entry for CVE-2025-68613. This item is shown as 1 - 1 of 1 in the current view of the KEV Catalog.