CVE-2025-68143

CVSS v4.0

6.5

Vector

AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Name of the Vulnerable Software and Affected Versions mcp-server-git versions prior to 2025.9.25

Description Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). The

git init

tool in versions prior to 2025.9.25 accepted arbitrary filesystem paths and created Git repositories without validating the target location. This allowed the creation of Git repositories in any directory accessible to the server process, potentially enabling subsequent git operations on those directories. The tool was removed entirely because the server is intended to operate on existing repositories only.

Recommendations Upgrade to version 2025.9.25 or newer.

Fix

RCE

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2025-68143

Affected Products

Git-Mcp-Server

CVE-2025-68143

Weakness Enumeration

Related Identifiers

Affected Products

References · 9