AIKIDO-2024-10088
n8n-core is vulnerable to Code Injection
80
High Risk
This Affects:
n8n-coreTL;DR
Affected versions of the n8n-core package are vulnerable to code injection due to a bug in the pdfjs-dist dependency. If PDF.js is used to load a malicious PDF and is configured with isEvalSupported set to true (the default), unrestricted attacker-controlled JavaScript will be executed in the context of the hosting domain. In the fixed version, n8n-core mitigates this by setting isEvalSupported to false.
Who does this affect?
You are affected if you are using a version that falls within the vulnerable range.
Background info
n8n-core is vulnerable to Code Injection in versions 1.37.2 - 1.40.0.
How to fix this
Upgrade the n8n-core library to the patch version.
Links
GitHub Releases
Other
bugzilla.mozilla.org/show_bug.cgi?id=1893645lists.debian.org/debian-lts-announce/2024/05/msg00010.htmllists.debian.org/debian-lts-announce/2024/05/msg00012.htmlmozilla.org/security/advisories/mfsa2024-21/mozilla.org/security/advisories/mfsa2024-22/mozilla.org/security/advisories/mfsa2024-23/seclists.org/fulldisclosure/2024/Aug/30codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in-pdf-js/exploit-db.com/exploits/52273cert-portal.siemens.com/productcert/html/ssa-827383.html
Are You Affected?
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.
SOC 2Compliant
ISO 27001Compliant