CVE-2025-64443

Name of the Vulnerable Software and Affected Versions MCP Gateway versions prior to 0.28.0

Description MCP Gateway, used for running and deploying MCP servers, is susceptible to DNS rebinding when operating in sse or streaming transport mode. An attacker can exploit this by tricking a user into visiting a malicious website or being served a malicious advertisement, potentially allowing browser-based exploitation of MCP servers behind the gateway. This could include manipulation of tools or features exposed by those servers. The gateway is not affected when running in the default stdio mode, which does not listen on network ports.

Recommendations Update to version 0.28.0 or later.