CVE-2026-45582

6.5 MEDIUM

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations

Published: 2026-05-29 · Last updated: 2026-06-01

Severity and scoring

CVSS: 6.5 MEDIUM
Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-201

Affected products

Vendor	Product
n8n-mcp	n8n-mcp

Description

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. Prior to 2.51.3, the workflow telemetry sanitizer could retain partial fragments of URL-shaped node parameters before sending workflow data to the project's anonymous telemetry backend. Values placed in HTTP-Request-style node parameters — such as customer or tenant identifiers, short secrets embedded in query strings, and signed request parameters — could therefore appear in stored telemetry, contrary to the collection boundary documented in PRIVACY.md. This vulnerability is fixed in 2.51.3.

Source: NVD

References

Related CVEs

Same vendor

CVE-2026-45707 — n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations (8.1 HIGH)

Same CWE

CVE-2026-52695 — Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout <= 1.8.2 versions (7.5 HIGH)
CVE-2026-52692 — Unauthenticated Sensitive Data Exposure in Affiliates Manager <= 2.9.50 versions (7.5 HIGH)
CVE-2026-49082 — Subscriber Sensitive Data Exposure in Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & C... (7.4 HIGH)
CVE-2026-48965 — Subscriber Sensitive Data Exposure in XCloner <= 4.8.6 versions (6.5 MEDIUM)
CVE-2026-42667 — Unauthenticated Sensitive Data Exposure in Bookly <= 27.4 versions (7.5 HIGH)