VYPR

PyPI package

mcp

pkg:pypi/mcp

Vulnerabilities (3)

  • CVE-2025-66416Dec 2, 2025
    affected < 1.23.0fixed 1.23.0

    The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.23.0, tThe Model Context Protocol (MCP) Python SDK does not enable DNS rebinding protection by default for HTTP-based servers. When an HTTP-based MCP serve

  • CVE-2025-53366HigJul 4, 2025
    affected < 1.9.4fixed 1.9.4

    The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.9.4, a validation error in the MCP SDK can cause an unhandled exception when processing malformed requests, resulting in service unavailability (500 errors

  • CVE-2025-53365HigJul 4, 2025
    affected < 1.10.0fixed 1.10.0

    The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the