CVE-2025-68613 - Vulnerability Details

Threat entity extracted from intelligence sources

Frequency
17
occurrences
First Seen
December 23, 2025
Last Seen
July 7, 2026

CVE-2025-68613 is a vulnerability tracked across 9 threat clusters and 17 intelligence report mentions on ThreatCluster. First observed December 23, 2025; most recent activity July 7, 2026.

Related Threat Clusters

  • Critical n8n Vulnerability Enables Arbitrary Command Execution

    A critical vulnerability in the n8n workflow automation platform, tracked as CVE-2025-68668, allows authenticated users to execute arbitrary system commands on affected servers. With a CVSS score of 9.9, this flaw…

    19 articles · Updated January 6, 2026
  • Critical RCE Vulnerability in n8n Affects Over 100K Servers

    A critical remote code execution vulnerability (CVE-2025-68613) in the n8n workflow automation platform has been disclosed, potentially impacting over 100,000 servers, primarily in the United States. The flaw, which has…

    4 articles · Updated December 24, 2025
  • Iranian APT Groups Target Israeli Organizations with Modular C2 Frameworks

    In 2026, Iranian APT groups, notably Cavern Manticore and OilRig, have intensified cyber operations against Israeli organizations, primarily in the IT and government sectors. Cavern Manticore employs a modular…

    10 articles · Updated July 6, 2026
  • Critical n8n Vulnerability Exposes 103,000+ Instances to RCE Attacks

    A critical remote code execution vulnerability, tracked as CVE-2025-68613, has been identified in the n8n automation platform, affecting over 103,000 instances globally. The flaw allows authenticated attackers to…

    4 articles · Updated December 23, 2025
  • Critical n8n Flaw Allows Arbitrary Code Execution

    A critical vulnerability in the n8n automation platform, tracked as CVE-2025-68613 with a CVSS score of 9.9, could allow attackers to execute arbitrary code under specific conditions. The flaw affects the widely used…

    2 articles · Updated December 23, 2025
  • Critical Vulnerabilities in n8n Workflow Automation Platform Disclosed

    Multiple critical vulnerabilities in the n8n open-source workflow automation platform were disclosed, allowing authenticated users to execute remote code on the server. These vulnerabilities, tracked as CVE-2026-25049,…

    61 articles · Updated February 4, 2026
  • Europe Launches GCVE Database for Cybersecurity Vulnerabilities

    The Global Cybersecurity Vulnerability Enumeration (GCVE) database has been launched in Europe to track IT security vulnerabilities and reduce reliance on U.S. systems. This initiative, accessible at db.gcve.eu, aims to…

    6 articles · Updated January 21, 2026
  • High-Severity Vulnerability in Open WebUI Exposes Users to Account Takeover

    A high-severity security vulnerability, tracked as CVE-2025-64496, has been identified in Open WebUI, affecting versions 0.6.34 and older when the Direct Connections feature is enabled. Discovered by Cato Networks…

    4 articles · Updated January 6, 2026
  • Ransomware Attack Hits Romanian Waters, Disrupts Operations

    A ransomware attack targeted Romanian Waters (Administrația Națională Apele Române), affecting around 1,000 computers across 10 of 11 regional offices. Key systems, including email, databases, web portals, and GIS…

    2 articles · Updated January 7, 2026

Recent Intelligence Reports

  • Active Exploitation Alert: Iranian Cavern Manticore APT Abuses SysAid Supply Chain ... — Rescana · July 7, 2026
  • Critical n8n Vulnerability Enables System Command Execution Via Weaponized Workflows — Cybersecuritynews · February 5, 2026
  • Critical N8n Sandbox Escape Could Lead to Server Compromise — Ground.News · February 5, 2026
  • n8n security woes roll on as new critical flaws bypass December fix — Theregister · February 5, 2026
  • n8n security woes roll on as new critical flaws bypass December fix — Theregister · February 5, 2026
  • Critical n8n Vulnerability CVE-2026 — Thecyberexpress · February 5, 2026
  • Critical n8n flaws disclosed along with public exploits — Bleepingcomputer · February 4, 2026
  • New EU Vulnerability Platform GCVE Goes Live, Reducing Reliance on Global Systems — Thecyberexpress · January 21, 2026

CVSS v3.1 Breakdown