CNNVD-202509-1531 Information

CNNVD ID

CNNVD-202509-1531

Related CVE

CVE-2025-56404

• CNNVD Published: 2025-09-10

Description (Chinese)

MCP MariaDB Server是MariaDB开源的一个大语言模型上下文协议的服务器实现。 MCP MariaDB Server 0.1.0版本存在安全漏洞，该漏洞源于SSE服务缺乏用户验证，可能导致敏感信息泄露。

Description (English)

MCP MariaDB Server was the server for the context protocol for a large-language model of the MariaDB open source. MCP MariaDB Server version 0.1.0 has a security gap, which stems from the lack of user-verified SSE services and may lead to the disclosure of sensitive information.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

MariaDB

Published

2025-09-10

Last Modified

2026-02-24

References

https://github.com/August829/CVEP/issues/2 https://github.com/MariaDB/mcp/issues/17 https://access.redhat.com/security/cve/cve-2025-56404