System	Score	Found at
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2026-25631
cvssv3.1_qr	MODERATE	https://github.com/advisories/GHSA-2xcx-75h9-vr9h
cvssv4	5.3	https://github.com/n8n-io/n8n
generic_textual	MODERATE	https://github.com/n8n-io/n8n
cvssv3.1_qr	MODERATE	https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h
cvssv4	5.3	https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h
generic_textual	MODERATE	https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h
ssvc	Track	https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h
cvssv4	5.3	https://nvd.nist.gov/vuln/detail/CVE-2026-25631
generic_textual	MODERATE	https://nvd.nist.gov/vuln/detail/CVE-2026-25631

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2026-25631
		https://github.com/n8n-io/n8n
CVE-2026-25631		https://nvd.nist.gov/vuln/detail/CVE-2026-25631
GHSA-2xcx-75h9-vr9h		https://github.com/advisories/GHSA-2xcx-75h9-vr9h
GHSA-2xcx-75h9-vr9h		https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h

No exploits are available.

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N Found at https://github.com/n8n-io/n8n

Attack Vector (AV)	Attack Complexity (AC)	Attack Requirements (AT)	Privileges Required (PR)	User Interaction (UI)	Vulnerable System Impact Confidentiality (VC)	Vulnerable System Impact Integrity (VI)	Vulnerable System Impact Availability (VA)	Subsequent System Impact Confidentiality (SC)	Subsequent System Impact Integrity (SI)	Subsequent System Impact Availability (SA)
network adjacent local physical	low high	none present	none low high	none passive active	high low none	high low none	high low none	high low none	high low none	high low none

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N Found at https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h

Attack Vector (AV)	Attack Complexity (AC)	Attack Requirements (AT)	Privileges Required (PR)	User Interaction (UI)	Vulnerable System Impact Confidentiality (VC)	Vulnerable System Impact Integrity (VI)	Vulnerable System Impact Availability (VA)	Subsequent System Impact Confidentiality (SC)	Subsequent System Impact Integrity (SI)	Subsequent System Impact Availability (SA)
network adjacent local physical	low high	none present	none low high	none passive active	high low none	high low none	high low none	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2026-02-06T21:06:21Z/ Found at https://github.com/n8n-io/n8n/security/advisories/GHSA-2xcx-75h9-vr9h

---

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N Found at https://nvd.nist.gov/vuln/detail/CVE-2026-25631

Attack Vector (AV)	Attack Complexity (AC)	Attack Requirements (AT)	Privileges Required (PR)	User Interaction (UI)	Vulnerable System Impact Confidentiality (VC)	Vulnerable System Impact Integrity (VI)	Vulnerable System Impact Availability (VA)	Subsequent System Impact Confidentiality (SC)	Subsequent System Impact Integrity (SI)	Subsequent System Impact Availability (SA)
network adjacent local physical	low high	none present	none low high	none passive active	high low none	high low none	high low none	high low none	high low none	high low none

Percentile	0.07508
EPSS Score	0.00025
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T16:41:39.347683+00:00	Vulnrichment	Import	https://github.com/cisagov/vulnrichment/blob/develop/2026/25xxx/CVE-2026-25631.json	38.6.0