A vulnerability was found in zcaceres markdownify-mcp up to 1.1.0. It has been classified as problematic. This impacts the function
saveToTempFile of the file src/Markdownify.ts of the component webpage-to-markdown/youtube-to-markdown/bing-search-to-markdown. This manipulation causes insufficiently random values.
This vulnerability is tracked as CVE-2026-14702. The attack is restricted to local execution. Moreover, an exploit is present.
The pull request to fix this issue awaits acceptance.