Primary

Context

Model Context Protocol Servers Filesystem Symlink Vulnerability Allowing Unintended File Access

Vulnerability

A path validation bypass vulnerability has been identified in the Model Context Protocol Servers implementation of the Filesystem package, specifically in versions prior to 0.6.3 and 2025.3.28. This vulnerability could allow access to unintended files through symlinks within permitted directories. The issue arises from improper handling of symlinked paths, which could be exploited to traverse directories and access restricted files.

Impact

Exploitation of this vulnerability could lead to unauthorized access to files, bypassing normal directory restrictions. According to the advisory, this vulnerability could also cause a denial-of-service condition.

Remediation

Users are advised to upgrade to version 0.6.4 or 2025.7.01 to address this vulnerability.

Added: Jul 2, 2025, 4:07 PM

Updated: Jul 2, 2025, 4:07 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

4.0

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

4.0

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Model Context Protocol Servers Filesystem Symlink Vulnerability Allowing Unintended File Access

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating