CISA Flags Actively Exploited n8n RCE Bug — 24,700 Workflow Automation Instances Remain Exposed
CISA added a critical n8n expression injection vulnerability (CVE-2025-68613, CVSS 9.9) to the KEV catalog. Over 24,700 n8n instances are internet-accessible, and attackers are exploiting sandbox escapes for remote code execution.