PatchSiren cyber security CVE debrief
CVE-2026-25536 modelcontextprotocol CVE debrief
CVE-2026-25536 is a HIGH severity vulnerability in the MCP TypeScript SDK, affecting versions 1.10.0 to 1.25.3. The issue allows for cross-client response data leaks when a single McpServer/Server and transport instance is reused across multiple client connections. This is particularly problematic in stateless StreamableHTTPServerTransport deployments. The vulnerability has been patched in version 1.26.0. Users of the affected versions should update to 1.26.0 or later to mitigate this issue. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 7.1, indicating a high level of severity.
- Vendor
- modelcontextprotocol
- Product
- typescript-sdk
- CVSS
- HIGH 7.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-02-04
- Original CVE updated
- 2026-06-30
- Advisory published
- 2026-02-04
- Advisory updated
- 2026-06-30
Who should care
Developers and administrators using the MCP TypeScript SDK in their applications should be aware of this vulnerability. Specifically, those who have implemented or are planning to implement the MCP TypeScript SDK in versions 1.10.0 to 1.25.3 should take immediate action to update to version 1.26.0 or later. Additionally, security teams responsible for monitoring and patching vulnerabilities in their organization's software stack should prioritize this CVE.
Technical summary
The MCP TypeScript SDK, used for Model Context Protocol servers and clients, has a vulnerability that allows cross-client response data leaks. This occurs when a single McpServer/Server and transport instance is reused across multiple client connections. The issue is particularly relevant in stateless StreamableHTTPServerTransport deployments. The vulnerability is caused by the improper handling of client connections, leading to potential data exposure. The CVSS vector for this vulnerability is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N, indicating a high level of severity. The vulnerability has been addressed in version 1.26.0 of the MCP TypeScript SDK.
Defensive priority
This vulnerability should be prioritized for immediate attention due to its high severity and potential impact on data confidentiality. Affected users should update to version 1.26.0 or later as soon as possible.
Recommended defensive actions
- Update to MCP TypeScript SDK version 1.26.0 or later
- Review and update affected deployments to prevent reuse of McpServer/Server and transport instances across multiple client connections
- Monitor for any suspicious activity related to cross-client data leaks
- Implement additional security measures to protect sensitive data in transit
- Verify that all client connections are properly isolated and secured
Evidence notes
The CVE-2026-25536 vulnerability was publicly disclosed on February 4, 2026, and has since been modified on June 30, 2026. The vulnerability affects MCP TypeScript SDK versions 1.10.0 to 1.25.3. The issue has been patched in version 1.26.0. Multiple sources, including GitHub and Red Hat, have provided advisories and patches for this vulnerability.
Official resources
-
CVE-2026-25536 CVE record
CVE.org
-
CVE-2026-25536 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Issue Tracking, Vendor Advisory
-
Mitigation or vendor reference
[email protected] - Issue Tracking, Vendor Advisory
-
Mitigation or vendor reference
[email protected] - Mitigation, Vendor Advisory
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
-
Source reference
0b0ca135-0b70-47e7-9f44-1890c2a1c46c
This article is AI-assisted and based on the supplied source corpus.