Security Advisory

CVE-2025-13822

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-14 10:23:49

Last updated 2026-04-14 13:14:16

Assigner CERT-PL

State PUBLISHED

Description

MCPHub in versions below 0.11.0 is vulnerable to authentication bypass. Some endpoints are not protected by authentication middleware, allowing an unauthenticated attacker to perform actions in the name of other users and using their privileges.

← Browse all CVEs View on cve.org ↗