CVE-2025-66689
Last modified
CVE-2025-66689 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. A path traversal vulnerability exists in Zen MCP Server before 9.8.2 that allows authenticated attackers to read arbitrary files on the system. The vulnerability is caused by flawed logic in the is_dangerous_path() validation function that uses exact string matching against a blacklist of system directories. EPSS estimates a 0.48% chance of exploitation in the next 30 days.
Description
A path traversal vulnerability exists in Zen MCP Server before 9.8.2 that allows authenticated attackers to read arbitrary files on the system. The vulnerability is caused by flawed logic in the is_dangerous_path() validation function that uses exact string matching against a blacklist of system directories. Attackers can bypass these restrictions by accessing subdirectories of blacklisted paths.
Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Busymac | Pal Mcp Server | < 9.8.2 |
References
- https://github.com/BeehiveInnovations/zen-mcp-server/issues/293Exploit, Issue Tracking, Third Party Advisory
- https://github.com/Team-Off-course/MCP-Server-Vuln-Analysis/blob/main/CVE-2025-66689.mdExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2025-66689?
How severe is CVE-2025-66689?
How do I fix CVE-2025-66689?
Are you affected by CVE-2025-66689?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST