{"uuid": "3957c8dd-368c-4746-a75d-1c4f8c3ab0c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59208", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mqsjjlxbiq2y", "content": "n8n fixed CVE-2026-59208, where Enterprise token exchange could ignore issuer binding and log users into the wrong account when multiple external issuers were trusted. Affects versions below 2.27.4 and 2.28.0. #n8n #CVE202659208 #RFC8693", "creation_timestamp": "2026-07-17T00:45:23.414204Z"}