CVE-2025-56404

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions: MariaDB MCP version 0.1.0

Description: An issue was discovered in the MariaDB MCP software where attackers can gain sensitive information via the SSE service due to a lack of user validation within the service.

Recommendations: Ensure proper user validation is implemented within the SSE service to prevent unauthorized access to sensitive information.

Exploit

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

BDU:2025-16375

CVE-2025-56404

Affected Products

Mariadb Mcp

CVE-2025-56404

Weakness Enumeration

Related Identifiers

Affected Products

References · 9