CVE-2025-13822

Sažetak

MCPHub in versions below 0.11.0 is vulnerable to authentication bypass. Some endpoints are not protected by authentication middleware, allowing an unauthenticated attacker to perform actions in the name of other users and using their privileges.

Reference

https://cert.pl/en/posts/2026/04/CVE-2025-13822
https://github.com/samanhappy/mcphub

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

14-04-2026 - 11:16

Objavljeno

14-04-2026 - 11:16