Количество 2
Количество 2
CVE-2025-10193
DNS rebinding vulnerability in Neo4j Cypher MCP server allows malicious websites to bypass Same-Origin Policy protections and execute unauthorised tool invocations against locally running Neo4j MCP instances. The attack relies on the user being enticed to visit a malicious website and spend sufficient time there for DNS rebinding to succeed.
GHSA-vcqx-v2mg-7chx
Neo4j Cypher MCP server is vulnerable to DNS rebinding
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-10193 DNS rebinding vulnerability in Neo4j Cypher MCP server allows malicious websites to bypass Same-Origin Policy protections and execute unauthorised tool invocations against locally running Neo4j MCP instances. The attack relies on the user being enticed to visit a malicious website and spend sufficient time there for DNS rebinding to succeed. | 0% Низкий | 5 месяцев назад | |
| GHSA-vcqx-v2mg-7chx Neo4j Cypher MCP server is vulnerable to DNS rebinding | 0% Низкий | 5 месяцев назад |
Уязвимостей на страницу