CVE-2026-42559 - RMCP rmcp - DNS Rebinding

Overview

RMCP rmcp crate < 1.4.0 contains a DNS rebinding vulnerability caused by lack of validation of the incoming Host header in Streamable HTTP server transport, letting malicious websites send authenticated requests to MCP servers on victim's loopback or private network, exploit requires victim to visit malicious website.

Severity & Score

Severity: High

CVSS Score: 8.8

EPSS Score: 0.0%(Probability of exploitation in next 30 days)

Impact

Malicious websites can send authenticated requests to local MCP servers, potentially leading to unauthorized actions on private network services.

Mitigation

Update to version 1.4.0 or later.

References

Social Media Activity(2 posts)

TheHackerWire

@thehackerwire

May 14, 2026

🟠 CVE-2026-42559 - High (8.8) RMCP is an official Rust SDK for the Model Context Protocol. Prior to version 1.4.0, the rmcp crate's Streamable HTTP server transport (crates/rmcp/src/transport/streamable_http_server/) did not validate the incoming Host header. This allowed a ma... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42559/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

TheHackerWire

@thehackerwire

May 14, 2026

🟠 CVE-2026-42559 - High (8.8) RMCP is an official Rust SDK for the Model Context Protocol. Prior to version 1.4.0, the rmcp crate's Streamable HTTP server transport (crates/rmcp/src/transport/streamable_http_server/) did not validate the incoming Host header. This allowed a ma... 🔗 https://www.thehackerwire.com/vulnerability/CVE-2026-42559/ #CVE #vulnerability #infosec #cybersecurity #security #Tenda #patchstack

View original post

CVE-2026-42559 - Vulnerability Analysis

Overview

Severity & Score

Impact

Mitigation

References

Social Media Activity(2 posts)

Related Resources

Details

CWE

CVSS Metrics

EPSS Score