CNNVD-202512-1087 Information

CNNVD ID

CNNVD-202512-1087

Related CVE

CVE-2025-65513

• CNNVD Published: 2025-12-09

Description (Chinese)

Fetch MCP Server是Zach Caceres个人开发者的一个上下文协议服务器。 Fetch MCP Server 1.0.2版本及之前版本存在安全漏洞，该漏洞源于服务端请求伪造，可能导致访问内部网络资源。

Description (English)

Fetch MCP Server is a context protocol server for Zach Caceres personal developers. There is a security gap in Fech MCP Server 1.0.2 and earlier versions, which stems from the forgery of service-level requests and may lead to access to internal network resources.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-12-09

Last Modified

2026-02-24

References

https://thorn-pheasant-6d8.notion.site/fetch-mcp-2853daf7b44180029ca5d56e03195736 https://github.com/Team-Off-course/MCP-Server-Vuln-Analysis/blob/main/CVE-2025-65513.md https://access.redhat.com/security/cve/cve-2025-65513