Lucene search
K

7 matches found

OSV
OSV
added 2026/06/03 2:56 p.m.8 views

ROOT-APP-PYPI-CVE-2025-53365 CVE-2025-53365 in rootio-mcp - Patched by Root

Root has patched CVE-2025-53365 in the rootio-mcp package for Root:PyPI. Multiple fixed versions available...

5.3CVSS5.4AI score0.00353EPSS
Exploits0
Circl
Circl
added 2025/07/05 1:38 a.m.20 views

CVE-2025-53365

creationtimestamp| type| source ---|---|--- 2025-07-05 01:38:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lt6mqf23372i 2025-08-06 13:54:19+00:00| seen| MISP/1413a78e-c0b3-4092-97e7-909fb9773448 2025-08-14 11:44:20+00:00| seen| MISP/1413a78e-c0b3-4092-97e7-909fb9773448 2026-03-...

8.7CVSS7.3AI score0.00353EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/07/04 10:41 p.m.5 views

hakoniwa-pdu (>=1.2.8 <=1.6.1), iflow-mcp-vzeman-odoo-mcp-server (=0.2.0) +5 more potentially affected by CVE-2025-53365 via mcp (=1.0.0)

mcp PYPI version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on mcp and may be impacted: - hakoniwa-pdu =1.2.8, =0.1.0, =1.0.0, =0.2.0, =0.2.2 Source cves: CVE-2025-53365 Source advisory: SNYK:PYTHON-MCP-10734136...

8.7CVSS5.4AI score0.00353EPSS
Exploits0
NVD
NVD
added 2025/07/04 10:15 p.m.24 views

CVE-2025-53365

The MCP Python SDK, called mcp on PyPI, is a Python implementation of the Model Context Protocol MCP. Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing...

8.7CVSS0.00353EPSS
Exploits0References3
OSV
OSV
added 2025/07/04 10:3 p.m.18 views

CVE-2025-53365 MCP Python SDK has Unhandled Exception in Streamable HTTP Transport ,Leading to Denial of Service

The MCP Python SDK, called mcp on PyPI, is a Python implementation of the Model Context Protocol MCP. Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing...

8.7CVSS6.6AI score0.00353EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/04 10:3 p.m.21 views

CVE-2025-53365 MCP Python SDK has Unhandled Exception in Streamable HTTP Transport ,Leading to Denial of Service

The MCP Python SDK, called mcp on PyPI, is a Python implementation of the Model Context Protocol MCP. Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing...

8.7CVSS0.00353EPSS
Exploits0References3
CVE
CVE
added 2025/07/04 10:3 p.m.44 views

CVE-2025-53365

The MCP Python SDK (package name mcp) has a CVE-2025-53365 issue affecting versions prior to 1.10.0. If a client deliberately triggers an exception after establishing a streamable HTTP session, the server can emit an uncaught ClosedResourceError, potentially crashing the server and requiring a re...

8.7CVSS6.4AI score0.00353EPSS
Exploits0References3
Rows per page
Query Builder