CVE-2025-68145 | modelcontextprotocol servers up to 2025.12.16 repo_path path traversal

A vulnerability was found in modelcontextprotocol servers up to 2025.12.16. It has been rated as critical. This issue affects some unknown processing. This manipulation of the argument repo_path causes path traversal.

The identification of this vulnerability is CVE-2025-68145. It is possible to initiate the attack remotely. There is no exploit available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More