Two Vulnerabilities in n8n Sandbox Mechanism Enable Remote Code Execution

Two vulnerabilities affecting n8n's sandbox mechanism have been identified, allowing for remote code execution (RCE). These flaws exploit weaknesses in the AST (Abstract Syntax Tree) sanitization logic. No details are provided regarding the affected versions, discovery or patch dates, or CVE identifiers. The primary impact is the potential for an attacker to execute arbitrary code remotely.