Known Vulnerabilities for Python-sdk by Modelcontextprotocol
Listed below are 10 of the newest known vulnerabilities associated with "Python-sdk" by "Modelcontextprotocol".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-63175 json | PlaywrightCapture stored capture-specific configuration and runtime data as mutable class-level variables rather than instanc... | Not Provided | 2026-07-15 | 2026-07-16 |
| CVE-2026-61447 json | PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-gener... | Not Provided | 2026-07-11 | 2026-07-13 |
| CVE-2026-61446 json | PraisonAI (praisonaiagents) before 1.6.78 contains a remote code execution vulnerability in the plugin manager, which loads a... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-61444 json | PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file parameter is d... | Not Provided | 2026-07-10 | 2026-07-10 |
| CVE-2026-61437 json | PraisonAI (pip package praisonaiagents) before 1.6.78 contains an unsafe dynamic module loading vulnerability in AgentFlow._r... | Not Provided | 2026-07-10 | 2026-07-14 |
| CVE-2026-61433 json | PraisonAI before 4.6.78 fails to safely encode deployment configuration values when generating Python source code for API ser... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-59950 json | The MCP Python SDK, called mcp on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to 1.28.1, the ... | Not Provided | 2026-07-15 | 2026-07-15 |
| CVE-2026-59939 json | httplib2 is a comprehensive HTTP client library for Python. Prior to 0.32.0, httplib2 performs unbounded decompression of HTT... | Not Provided | 2026-07-08 | 2026-07-10 |
| CVE-2026-59938 json | pypdf is a free and open-source pure-python PDF library. Prior to 6.14.0, an attacker can craft a PDF with declared image siz... | Not Provided | 2026-07-08 | 2026-07-09 |
| CVE-2026-59937 json | pypdf is a free and open-source pure-python PDF library. Prior to 6.14.0, an attacker can craft a PDF with repeated malformed... | Not Provided | 2026-07-08 | 2026-07-09 |