CVE-2026-32625 - Vulnerability Details
Type: CVE
Frequency: Mentioned 3 times
Threat intelligence on CVE-2026-32625. Found in 2 threat clusters across 3 articles.
Related Threat Clusters
- Critical Vulnerability CVE-2026-32625 Discovered in LibreChat (Threat Score: 78.0)
- Critical Vulnerabilities CVE-2026-48866 and CVE-2026-7313 Disclosed (Threat Score: 72.6)
Recent Articles
- CVE-2026-32625 INCIBE-CERT - Vulnerabilities RSS / 7h Gravedad 3.1 (CVSS 3.1 Base Score) Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score) - www.incibe.es
- CVE-2026-32625 Valters IT Hub / 2h The flaw resides in the Model Context Protocol (MCP) server integration, where the application resolves environment variable placeholders against the server's during Zod schema validation of user-supplied MCP server URLs. An authenticated attacker can craft a malicious MCP server configuration with a URL containing environment variable references (e.g., ). When the server validates this URL, it substitutes the placeholder with the actual environment variable va - www.valtersit.com
- CVE-2026-32625 - Exploits & Severity - Feedly