A vulnerability, which was classified as critical , has been found in n8n-io n8n up to 1.123.14/2.4.x . The impacted element is an unknown function of the component WebHook Trigger Handler . The manipulation leads to authentication bypass by spoofing. This vulnerability is listed as CVE-2026-56357 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.