CVE-2025-53110 Information
Jul 04, 2025
cve
Description
Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). Versions of Filesystem prior to 0.6.4 or 2025.7.01 could allow access to unintended files in cases where the prefix matches an allowed directory. Users are advised to upgrade to 0.6.4 or 2025.7.01 resolve.
Reference
https://github.com/modelcontextprotocol/servers/commit/cc99bdabdcad93a58877c5f3ab20e21d4394423d https://github.com/modelcontextprotocol/servers/security/advisories/GHSA-hc55-p739-j48w
Related CNNVD
CNNVD-202507-154 (Published: 2025-07-02)
Share on: