CNNVD-202507-508 Information
CNNVD ID
CNNVD-202507-508
Related CVE
- CNNVD Published: 2025-07-04
Description (Chinese)
Model Context Protocol Python SDK是Model Context Protocol开源的一个用于模型上下文协议服务器和客户端的开发工具。 Model Context Protocol Python SDK 1.10.0之前版本存在安全漏洞,该漏洞源于未捕获ClosedResourceError,可能导致服务崩溃。
Description (English)
Model Context Protocol Python SDK is a development tool for model context protocol servers and clients from the Model Context Protocol Open Source. There was a security loophole in the previous version of Model subject Protocol Python SDK 1.10.0, which originated in the failure to capture ClosedResourceError and could lead to a breakdown of services.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Moderec
Published
2025-07-04
Last Modified
2026-02-24
References
https://github.com/modelcontextprotocol/python-sdk/commit/7b420656de48cfdb90b39eb582e60b6d55c2f891 https://github.com/modelcontextprotocol/python-sdk/pull/967 https://github.com/modelcontextprotocol/python-sdk/security/advisories/GHSA-j975-95f5-7wqh https://access.redhat.com/security/cve/cve-2025-53365
Patch
https://github.com/modelcontextprotocol/python-sdk/releases
Share on: