GO-2026-5008 MCP Registry: OCI validator skips ownership check on upstream rate limits in github.com/modelcontextprotocol/registry

MCP Registry: OCI validator skips ownership check on upstream rate limits in github.com/modelcontextprotocol/registry...

PT-2026-42384

MCP Registry: OCI validator skips ownership check on upstream rate limits in github.com/modelcontextprotocol/registry...

ai.telosforge:kimaira-starter-agentic (>=1.2.4 <=1.2.6), ai.telosforge:kimaira-starter-agentic-factory (>=1.2.4 <=1.2.6) +367 more potentially affected by CVE-2026-35568 via io.modelcontextprotocol.sdk:mcp-core (>=0.13.0 <=0.17.2)

io.modelcontextprotocol.sdk:mcp-core MAVEN version =0.13.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =0.0.1, =0.1.0, =0.3.0, =2.0.0-beta.7, =1.1.0.0, =1.1.0.0, =1.1.2.2-retriever2 and more Source cves: CVE-2026-35568 Source advisory: SNYK:JAVA-IOMODELCONTEXTPROTOCOLSDK-15928845...

ai.agentican:agentican-framework-core (>=0.1.0-alpha.1 <=0.1.0-alpha.3), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.3) +122 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (=1.1.0)

io.modelcontextprotocol.sdk:mcp-core MAVEN version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.modelcontextprotocol.sdk:mcp-core and may be impacted: - ai.agentican:agentican-framework-core =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1,...

ai.agentican:agentican-framework-core (>=0.1.0-alpha.1 <=0.1.0-alpha.3), ai.agentican:agentican-quarkus-deployment (>=0.1.0-alpha.1 <=0.1.0-alpha.3) +122 more potentially affected by CVE-2026-34237 via io.modelcontextprotocol.sdk:mcp-core (=1.1.0)

io.modelcontextprotocol.sdk:mcp-core MAVEN version =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on io.modelcontextprotocol.sdk:mcp-core and may be impacted: - ai.agentican:agentican-framework-core =0.1.0-alpha.1, =0.1.0-alpha.1, =0.1.0-alpha.1,...

org.webjars.npm:chai-backbone (=0.9.2), org.webjars.npm:express (=5.1.0) +5 more potentially affected by CVE-2026-4926 via org.webjars.npm:path-to-regexp (=8.2.0)

org.webjars.npm:path-to-regexp MAVEN version =8.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:path-to-regexp and may be impacted: - org.webjars.npm:chai-backbone =0.9.2 - org.webjars.npm:express =5.1.0 -...

org.webjars.npm:chai-backbone (=0.9.2), org.webjars.npm:express (=5.1.0) +5 more potentially affected by CVE-2026-4923 via org.webjars.npm:path-to-regexp (=8.2.0)

org.webjars.npm:path-to-regexp MAVEN version =8.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:path-to-regexp and may be impacted: - org.webjars.npm:chai-backbone =0.9.2 - org.webjars.npm:express =5.1.0 -...

Security Bulletin: IBM Rhapsody Systems Engineering is using @modelcontextprotocol/sdk-1.15.0 which is vulnerable to CVE-2026-0621

Summary A security vulnerability was identified in the @modelcontextprotocol/sdk package used in our product. We have resolved the issue by updating to a non-vulnerable patched version to ensure the continued security and reliability of our application. Vulnerability Details CVEID:CVE-2026-0621...

0xgasless-mcp (>=1.0.3 <=1.0.5), 12306-adk-mcp (=0.3.4) +6119 more potentially affected by CVE-2026-0621 via @modelcontextprotocol/sdk (>=0.4.0 <=1.25.1)

@modelcontextprotocol/sdk NPM version =0.4.0, =1.0.3, =0.3.3, =1.0.0, =1.0.0, =0.0.1-beta.0, =0.1.0, =1.14.1, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.0.3 and more Source cves: CVE-2026-0621 Source advisory: OSV:GHSA-8R9Q-7V3J-JR4G...

0xgasless-mcp (>=1.0.3 <=1.0.5), 12306-adk-mcp (=0.3.4) +6009 more potentially affected by CVE-2025-66414 via @modelcontextprotocol/sdk (>=0.4.0 <=1.23.1)

@modelcontextprotocol/sdk NPM version =0.4.0, =1.0.3, =0.3.3, =1.0.0, =1.0.0, =0.0.1-beta.0, =0.1.0, =1.14.1, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.0.3 and more Source cves: CVE-2025-66414 Source advisory: OSV:GHSA-W48Q-CV73-MX4W...

org.webjars.npm:express (=5.1.0), org.webjars.npm:modelcontextprotocol__sdk (=1.12.1) potentially affected by CVE-2025-13466 via org.webjars.npm:body-parser (=2.2.0)

org.webjars.npm:body-parser MAVEN version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:body-parser and may be impacted: - org.webjars.npm:express =5.1.0 - org.webjars.npm:modelcontextprotocolsdk =1.12.1 Source cves:...

@arturl/pulumi-mcp-server (=0.1.9), @collegue/mcp (>=1.0.1 <=1.0.2) +52 more potentially affected by CVE-2025-58444 via @modelcontextprotocol/inspector-client (>=0.10.2 <=0.15.0)

@modelcontextprotocol/inspector-client NPM version =0.10.2, =1.0.1, =2.0.10, =0.0.0-semantically-released, =0.0.0-alpha.0, =0.1.0, =0.1.0, =2.1.0, =2.1.1 - @iflow-mcp/cliffhall-gooseteam =0.3.0 - @iflow-mcp/enhance-prompt-server =1.0.0 - @iflow-mcp/localstack-localstack-mcp-server =0.1.5 -...

NuGet Package 'ModelContextProtocol' Detection

The remote host has a 'ModelContextProtocol' with a Verified NuGet package status and is installed on the remote host. Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

@iflow-mcp/alibabacloud-dataworks-mcp-server (=1.0.43), @mseep/alibabacloud-dataworks-mcp-server (=1.0.36) +1 more potentially affected by CVE-2025-53110 via @modelcontextprotocol/server-filesystem (=2025.3.28)

@modelcontextprotocol/server-filesystem NPM version =2025.3.28 is affected by a known vulnerability. The following packages have a transitive dependency on @modelcontextprotocol/server-filesystem and may be impacted: - @iflow-mcp/alibabacloud-dataworks-mcp-server =1.0.43 -...

Remote Code Execution (RCE)

@modelcontextprotocol/inspector is vulnerable to Remote Code Execution RCE. The vulnerability is due to lack of authentication between the Inspector client and proxy, allowing unauthenticated requests to launch MCP commands over stdio...

@cyanheads/git-mcp-server (>=2.0.10 <=2.1.0), @dsazz/mcp-confluence (=0.2.0) +14 more potentially affected by CVE-2025-49596 via @modelcontextprotocol/inspector (>=0.10.2 <=0.13.0)

@modelcontextprotocol/inspector NPM version =0.10.2, =2.0.10, =0.0.0-alpha.0, =0.0.1, =1.1.37, =0.0.0, =0.12.0, =3.0.0 and more Source cves: CVE-2025-49596 Source advisory: OSV:GHSA-7F8R-222P-6F5G...