CVE-2026-35568 | modelcontextprotocol java-sdk up to 0.x Model Context Protocol origin validation

Inserito da Angelo Barbosa | Apr 7, 2026 | CVE

A vulnerability marked as critical has been reported in modelcontextprotocol java-sdk up to 0.x. Affected by this issue is some unknown functionality of the component Model Context Protocol. The manipulation leads to origin validation error.

This vulnerability is documented as CVE-2026-35568. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-35568 | modelcontextprotocol java-sdk up to 0.x Model Context Protocol origin validation

Post correlati

CVE-2025-40838 | Ericsson Indoor Connect 8855 up to 2025.Q1 insufficiently protected credentials

CVE-2024-33608 | F5 BIG-IP up to 17.1.0 Traffic Management Microkernel denial of service (K000138728)

CVE-2024-28063 | Kiteworks Totemomail up to 7.0.0 EnvelopeOpenServlet envelopeRecipient cross site scripting

CVE-2025-21686 | Linux Kernel up to 6.12.11/6.13.0 io_uring buffer overflow