VYPR

Mcp Toolbox

by Google

Source repositories

CVEs (5)

  • CVE-2026-11624CriJun 13, 2026
    risk 0.54cvss epss 0.00

    The Model Context Protocol has a security warning advising servers to validate the "Origin" header on all incoming connections to prevent DNS rebinding attacks. Prior to the v0.25.0 release, users had no way to validate the origin's host. In v0.25.0, a new "--allowed-hosts" flag…

  • CVE-2026-9739CriMay 27, 2026
    risk 0.54cvss epss 0.00

    Vulnerable to DNS rebinding attacks when using SSE (http://b/499408790). During the beta phase, we implemented `allowed-origins` and `allowed-hosts` flags to align with MCP security guidelines. However, the hardcoded `Access-Control-Allow-Origin: *` header in the SSE…

  • CVE-2026-11719Jun 18, 2026
    risk 0.00cvss epss 0.00

    An authenticated authorization bypass vulnerability exists in MCP Toolbox for Databases due to missing scope enforcement across older protocol handlers. While the 2025-11-25 protocol version handler correctly enforces per-tool restrictions defined by scopesRequired, older…

  • CVE-2026-11718Jun 18, 2026
    risk 0.00cvss epss 0.00

    An authentication bypass vulnerability exists in the generic opaque token validation path (validateOpaqueToken) of googleapis/mcp-toolbox. When the toolbox validates an opaque token via an OAuth 2.0 introspection endpoint (RFC 7662), it decodes the response into an…

  • CVE-2026-11717Jun 18, 2026
    risk 0.00cvss epss 0.00

    An authentication bypass vulnerability exists in the generic opaque token validation path (validateOpaqueToken) of googleapis/mcp-toolbox. When verifying an unparsed opaque token via an OAuth 2.0 introspection endpoint (RFC 7662), the toolbox decodes the response into an…