CVE-2026-49988: CWE-200: Exposure of Sensitive Information to an Unauthorized Actor in yamadashy repomix
A vulnerability in yamadashy repomix prior to version 1.14.1 allows unauthorized local file reads. The Repomix MCP server's attach_packed_output and read_repomix_output flows can access arbitrary local .json, .txt, .md, or .xml files without proper safety checks. This bypasses the intended secret-scanning boundary, exposing sensitive information. The issue is fixed in version 1.14.1.
AI Analysis
Technical Summary
CVE-2026-49988 is an information exposure vulnerability in yamadashy repomix versions before 1.14.1. The flaw exists because the MCP server's attach_packed_output and read_repomix_output functions can register and read arbitrary local files with extensions .json, .txt, .md, or .xml without enforcing the file_system_read_file runSecretLint() safety check or validating Repomix packed-output. This allows callers with limited privileges to bypass local file-read secret-scanning protections and access sensitive data. The vulnerability is addressed by fixing these checks in repomix version 1.14.1.
Potential Impact
An attacker with limited privileges on the affected system can read arbitrary local files of certain types, potentially exposing sensitive information that should be protected by secret-scanning boundaries. There is no indication of remote exploitation or privilege escalation beyond the local file read capability. The CVSS 4.0 base score is 6.8 (medium severity), reflecting local attack vector with low complexity and high impact on confidentiality.
Mitigation Recommendations
Upgrade repomix to version 1.14.1 or later, where the vulnerability is fixed by enforcing the file_system_read_file runSecretLint() safety check and validating packed-output files properly. No other mitigations are indicated. Patch status is confirmed fixed in 1.14.1.
CVE-2026-49988: CWE-200: Exposure of Sensitive Information to an Unauthorized Actor in yamadashy repomix
Description
A vulnerability in yamadashy repomix prior to version 1.14.1 allows unauthorized local file reads. The Repomix MCP server's attach_packed_output and read_repomix_output flows can access arbitrary local .json, .txt, .md, or .xml files without proper safety checks. This bypasses the intended secret-scanning boundary, exposing sensitive information. The issue is fixed in version 1.14.1.
CVSS v4.0
Score 6.8medium
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-49988 is an information exposure vulnerability in yamadashy repomix versions before 1.14.1. The flaw exists because the MCP server's attach_packed_output and read_repomix_output functions can register and read arbitrary local files with extensions .json, .txt, .md, or .xml without enforcing the file_system_read_file runSecretLint() safety check or validating Repomix packed-output. This allows callers with limited privileges to bypass local file-read secret-scanning protections and access sensitive data. The vulnerability is addressed by fixing these checks in repomix version 1.14.1.
Potential Impact
An attacker with limited privileges on the affected system can read arbitrary local files of certain types, potentially exposing sensitive information that should be protected by secret-scanning boundaries. There is no indication of remote exploitation or privilege escalation beyond the local file read capability. The CVSS 4.0 base score is 6.8 (medium severity), reflecting local attack vector with low complexity and high impact on confidentiality.
Mitigation Recommendations
Upgrade repomix to version 1.14.1 or later, where the vulnerability is fixed by enforcing the file_system_read_file runSecretLint() safety check and validating packed-output files properly. No other mitigations are indicated. Patch status is confirmed fixed in 1.14.1.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-06-02T18:30:51.282Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a57d26668715ace4339246e
Added to database: 07/15/2026, 18:33:10 UTC
Last enriched: 07/15/2026, 18:47:45 UTC
Last updated: 07/15/2026, 18:58:21 UTC
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.