Preventing Path Traversal Vulnerabilities In Mcp Server Function Security researchers recently disclosed multiple vulnerabilities affecting mcp server git, the official git server implementation for the model context protocol (mcp) maintained by anthropic. Any environment running mcp server git versions prior to 2025.12.18 is affected, with anthropic addressing the issues by removing the vulnerable git init tool and tightening path validation, and users advised to upgrade immediately.
 (1) (1).webp "Multiple Vulnerabilities In Anthropic Git Mcp Server Enables Code Execution")
Multiple Vulnerabilities In Anthropic Git Mcp Server Enables Code Execution Three chained vulnerabilities in anthropic's own mcp server git: cve 2025 68145 (path validation bypass), cve 2025 68143 (unrestricted git init that can turn .ssh into a git repo), and cve 2025 68144 (argument injection in git diff). Cve 2026 27735: mcp git server git add path traversal vulnerability enables credential exfiltration via gitpython's missing boundary validation. a single git add call reads ssh keys, kubeconfig, and aws credentials into git history — invisible in the working directory. In january 2026, researchers disclosed three security flaws in anthropic’s official mcp git server that allowed attackers to abuse ai driven tool calls. the vulnerabilities enabled unauthorized file access and, in certain chained scenarios, remote code execution. Three zero day vulnerabilities in mcp server git, the reference implementation of git integration for the model context protocol (mcp). the flaws stem from insufficient input validation and argument sanitization in core git operations.
.webp "Multiple Vulnerabilities In Anthropic Git Mcp Server Enables Code Execution")
Multiple Vulnerabilities In Anthropic Git Mcp Server Enables Code Execution In january 2026, researchers disclosed three security flaws in anthropic’s official mcp git server that allowed attackers to abuse ai driven tool calls. the vulnerabilities enabled unauthorized file access and, in certain chained scenarios, remote code execution. Three zero day vulnerabilities in mcp server git, the reference implementation of git integration for the model context protocol (mcp). the flaws stem from insufficient input validation and argument sanitization in core git operations. Three security vulnerabilities in anthropic’s mcp server git package could allow reading or deleting arbitrary files and, in a chained scenario, remote code execution. Three security flaws were disclosed in mcp server git, the official git mcp server maintained by anthropic. vulnerabilities allow path traversal, argument injection, file overwrite, and could lead to remote code execution when combined with other mcp servers. Security researchers at cyata have identified three vulnerabilities in mcp server git, anthropic’s official git model context protocol (mcp) server, that enable remote code execution through prompt injection attacks. Critical prompt injection vulnerabilities in anthropic mcp git server lead to rce. see how attackers chain git filesystem mcp for code execution—and how to protect your ai agents.
Using Burp To Test For Path Traversal Vulnerabilities Portswigger Three security vulnerabilities in anthropic’s mcp server git package could allow reading or deleting arbitrary files and, in a chained scenario, remote code execution. Three security flaws were disclosed in mcp server git, the official git mcp server maintained by anthropic. vulnerabilities allow path traversal, argument injection, file overwrite, and could lead to remote code execution when combined with other mcp servers. Security researchers at cyata have identified three vulnerabilities in mcp server git, anthropic’s official git model context protocol (mcp) server, that enable remote code execution through prompt injection attacks. Critical prompt injection vulnerabilities in anthropic mcp git server lead to rce. see how attackers chain git filesystem mcp for code execution—and how to protect your ai agents.
Comments are closed.