CVE-2026-7715 in mcp-server-arangodbinformação

Sumário

de MITRE • 04/05/2026

A vulnerability has been found in ravenwits mcp-server-arangodb up to 0.4.7. This affects the function arango_backup of the file src/tools.ts of the component MCP Interface. Such manipulation of the argument outputDir leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

VulDB

Divulgação

04/05/2026

Moderação

aceite

Entrada

VDB-360891

CPE

pronto

CWE

CWE-22 (confirmado)

Exploração

Descarregar

CVSS

6.3 (VulDB)

EPSS

0.00057

KEV

não

Atividades

muito baixo

Sector

Insurance, Energy, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7715
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7715
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7715/

◂ Voltar Visão Geral Próximo ▸

Do you know our Splunk app?

Download it now for free!