CVE-2026-54561
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
6.2 / 10
Vulnerability Description
mcp-memory-keeper: Arbitrary local file read in context_import via unvalidated filePath
Vulnerability Details
Published Date
Last Modified
Source
GitHub
Vendor
npm
Product
mcp-memory-keeper
External References
- https://github.com/mkreyman/mcp-memory-keeper/security/advisories/GHSA-f7wf-v2vw-mpcx
- https://github.com/mkreyman/mcp-memory-keeper/issues/35
- https://github.com/mkreyman/mcp-memory-keeper/pull/36
- https://github.com/mkreyman/mcp-memory-keeper/commit/84f6dfa692736a34ff36e2d2cf2188b71facf73b
- https://github.com/mkreyman/mcp-memory-keeper/releases/tag/v0.13.0
- https://github.com/advisories/GHSA-f7wf-v2vw-mpcx
Discussion (0)
Add Comment
No comments yet. Be the first!