Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
FrontMCP Affected by SSRF via $ref Dereferencing in Untrusted OpenAPI Specifications
Vulnerability Description
FrontMCP is a TypeScript-first framework for the Model Context Protocol (MCP). Prior to 2.3.0, the mcp-from-openapi library uses @apidevtools/json-schema-ref-parser to dereference $ref pointers in OpenAPI specifications without configuring any URL restrictions or custom resolvers. A malicious OpenAPI specification containing $ref values pointing to internal network addresses, cloud metadata endpoints, or local files will cause the library to fetch those resources during the initialize() call. This enables Server-Side Request Forgery (SSRF) and local file read attacks when processing untrusted OpenAPI specifications. This vulnerability is fixed in 2.3.0.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
服务端请求伪造(SSRF)
Vulnerability Title
frontmcp 代码问题漏洞
Vulnerability Description
frontmcp是AgentFront开源的一个基于TypeScript的MCP服务器开发框架。 FrontMCP 2.3.0之前版本存在代码问题漏洞,该漏洞源于未限制URL引用解析,可能导致服务端请求伪造和本地文件读取。
CVSS Information
N/A
Vulnerability Type
N/A