importantSYS.SOURCE: The Hacker News• 2026-07-16T19:03:25+05:30
n8n Token Exchange Vulnerability Allows Cross-Issuer Identity Spoofing
A vulnerability in n8n's token exchange feature allows attackers to impersonate users from different JWT issuers by exploiting improper validation of the 'iss' claim. The flaw, tracked as CVE-2026-59208, affects Enterprise instances configured with multiple trusted issuers and was patched in version 2.27.4.
n8n, the workflow automation platform, handed out the wrong accounts at login. On Enterprise instances configured to trust more than one external token issuer, it matched an incoming JWT to a local user on the sub claim alone and ignored iss.
A valid token from issuer A carrying a sub that belongs to someone under issuer B logged you in as them. Their password never
*** END OF TRANSMISSION ***