Skip to main content
Press slash or control plus K to focus the search. Use the arrow keys to navigate results and press enter to open a threat.

Threats Tagged 'ghsa-f9ff-5x35-7gfw'

View all threats tagged with 'ghsa-f9ff-5x35-7gfw'. Filter and sort to focus on specific types of threats.

Pro Console Lifetime

Stop chasing alerts. Route them.

Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.

Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)

View Plans & Pricing

API access activates after upgrading in Console -> Billing.

Breach by OffSeqOFFSEQFRIENDS — 25% OFF

Check if your credentials are on the dark web

Instant breach scanning across billions of leaked records. Free tier available.

Scan now

Filter Threats

Narrow down the results by type, severity, or affected countries

Search threats by title, CVE ID, or description. Maximum 100 characters.
Active filters (1):Tag: ghsa-f9ff-5x35-7gfw

Threats Tagged 'ghsa-f9ff-5x35-7gfw'

Click on any threat for detailed analysis and mitigation recommendations

GHSA-f9ff-5x35-7gfw: Grackle: Fail-open authorization in the MCP tool layer lets scoped agents perform cross-task and cross-session mutations (IDOR)
0

The @grackle-ai/mcp package (version 0.132.1 and earlier) contains multiple authorization bypass vulnerabilities due to inconsistent enforcement of scoped agent permissions in the MCP tool layer. The MCP server authenticates outbound gRPC calls with a full server API key, but backend handlers do not enforce caller-based authorization, relying solely on the MCP tool layer for access control. Several mutating tools fail to verify caller ancestry or workspace membership, allowing scoped agents to perform unauthorized cross-task and cross-session mutations, including task deletion, updates, session termination, and resumption. Additionally, scoped tokens without workspace association fail open, enabling read-only cross-workspace data disclosure. The scoped-token revocation mechanism is ineffective as it is never invoked outside tests and uses in-memory storage only. These issues collectively represent a high-severity risk of privilege boundary bypass and unauthorized data access or modification.

Join the discussion

Showing 1 to 1 of 1 result

Filters:Tag: ghsa-f9ff-5x35-7gfw
Page 1 of 1
OffSeq TrainingCredly Certified

Lead Pen Test Professional

Technical5-day eLearningPECB Accredited
View courses