CVE-2026-25905

Name of the Vulnerable Software and Affected Versions MCP (affected versions not specified)

Description The Python code executed by the 'runPython' or 'runPythonAsync' functions lacks isolation from other JavaScript code. This allows Python code to utilize Pyodide APIs to alter the JavaScript environment. An attacker could potentially hijack the MCP server, including performing MCP tool shadowing, for malicious purposes. The 'mcp-run-python' project is archived and unlikely to receive a fix.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.