Known vulnerabilities in MCP servers, tracked via OSV.dev. Updated daily.
CVE-2026-34780fixedElectron: Context Isolation bypass via contextBridge VideoFrame transfer
Oculo MCP ServerFixed in version 39.8.0
View advisory →CVE-2026-34779fixedElectron: AppleScript injection in app.moveToApplicationsFolder on macOS
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34778fixedElectron: Service worker can spoof executeJavaScript IPC replies
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34777fixedElectron: Incorrect origin passed to permission request handler for iframe requests
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34776fixedElectron: Out-of-bounds read in second-instance IPC on macOS and Linux
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34775fixedElectron: nodeIntegrationInWorker not correctly scoped in shared renderer processes
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34774fixedElectron: Use-after-free in offscreen child window paint callback
Oculo MCP ServerFixed in version 39.8.1
View advisory →CVE-2026-34773fixedElectron: Registry key path injection in app.setAsDefaultProtocolClient on Windows
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34772fixedElectron: Use-after-free in download save dialog callback
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34771fixedElectron: Use-after-free in WebContents fullscreen, pointer-lock, and keyboard-lock permission callbacks
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34770fixedElectron: Use-after-free in PowerMonitor on Windows and macOS
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34769fixedElectron: Renderer command-line switch injection via undocumented commandLineSwitches webPreference
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34768fixedElectron: Unquoted executable path in app.setLoginItemSettings on Windows
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34767fixedElectron: HTTP Response Header Injection in custom protocol handlers and webRequest
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-34766fixedElectron: USB device selection not validated against filtered device list
Oculo MCP ServerFixed in version 38.8.6
View advisory →CVE-2026-32871fixedFastMCP OpenAPI Provider has an SSRF & Path Traversal Vulnerability
FastmcpFixed in version 3.2.0
View advisory →CVE-2026-32871fixedFastMCP OpenAPI Provider has an SSRF & Path Traversal Vulnerability
Afgong Sqlite MCP ServerFixed in version 3.2.0
View advisory →CVE-2026-32871fixedFastMCP OpenAPI Provider has an SSRF & Path Traversal Vulnerability
Aamangeldi Dad Jokes MCP ServerFixed in version 3.2.0
View advisory →CVE-2026-27124fixedFastMCP: Missing Consent Verification in OAuth Proxy Callback Facilitates Confused Deputy Vulnerabilities
FastmcpFixed in version 3.2.0
View advisory →CVE-2026-27124fixedFastMCP: Missing Consent Verification in OAuth Proxy Callback Facilitates Confused Deputy Vulnerabilities
Aamangeldi Dad Jokes MCP ServerFixed in version 3.2.0
View advisory →CVE-2026-27124fixedFastMCP: Missing Consent Verification in OAuth Proxy Callback Facilitates Confused Deputy Vulnerabilities
Afgong Sqlite MCP ServerFixed in version 3.2.0
View advisory →CVE-2025-64340fixedFastMCP has a Command Injection vulnerability - Gemini CLI
Aamangeldi Dad Jokes MCP ServerFixed in version 3.2.0
View advisory →CVE-2025-64340fixedFastMCP has a Command Injection vulnerability - Gemini CLI
Afgong Sqlite MCP ServerFixed in version 3.2.0
View advisory →CVE-2026-33713fixedn8n has SQL Injection in Data Table Node via orderByColumn Expression
N8nFixed in version 1.123.26
View advisory →CVE-2026-33696fixedn8n: Prototype Pollution in XML and GSuiteAdmin node parameters lead to RCE
N8nFixed in version 2.14.1
View advisory →CVE-2026-33724fixedn8n's Source Control SSH Configuration Uses StrictHostKeyChecking=no
N8nFixed in version 2.5.0
View advisory →CVE-2026-33720fixedn8n Has Authorization Bypass in OAuth Callback via N8N_SKIP_AUTH_ON_OAUTH_CALLBACK
N8nFixed in version 2.8.0
View advisory →CVE-2026-33665fixedn8n: LDAP Email-Based Account Linking Allows Privilege Escalation and Account Takeover
N8nFixed in version 2.4.0
View advisory →CVE-2026-33663fixedn8n is Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition
N8nFixed in version 1.123.27
View advisory →CVE-2026-33660fixedn8n has Multiple Remote Code Execution Vulnerabilities in Merge Node AlaSQL SQL Mode
N8nFixed in version 2.14.1
View advisory →CVE-2025-69196fixedFastMCP OAuth Proxy token reuse across MCP servers
Afgong Sqlite MCP ServerFixed in version 2.14.2
View advisory →CVE-2025-69196fixedFastMCP OAuth Proxy token reuse across MCP servers
Aamangeldi Dad Jokes MCP ServerFixed in version 2.14.2
View advisory →CVE-2026-33010fixedmcp-memory-service's Wildcard CORS with Credentials Enables Cross-Origin Memory Theft
Mcp Memory ServiceFixed in version 10.25.1
View advisory →CVE-2026-29787fixedmcp-memory-service Vulnerable to System Information Disclosure via Health Endpoint
Mcp Memory ServiceFixed in version 10.21.0
View advisory →GHSA-vjf3-2gpj-233vfixedn8n has an SSO Enforcement Bypass in its Self-Service Settings API
N8nFixed in version 2.8.0
View advisory →