CVE-2025-49596

Name of the Vulnerable Software and Affected Versions MCP Inspector versions prior to 0.14.1

Description The MCP Inspector is a developer tool used for testing and debugging MCP servers. Versions prior to 0.14.1 are vulnerable to remote code execution (RCE) due to a lack of authentication between the Inspector client and proxy. This allows unauthenticated requests to launch MCP commands over stdio. The vulnerability is exploitable by chaining a known flaw affecting modern web browsers (0.0.0.0 Day) with a cross-site request forgery (CSRF) vulnerability. An attacker can execute arbitrary code on a developer's machine by tricking them into visiting a malicious website. The default configurations of the tool expose it to significant security risks, including missing authentication and encryption. The vulnerability has a CVSS score of 9.4 and is considered critical.

Recommendations Upgrade to MCP Inspector version 0.14.1 or later.