Threats Tagged 'ghsa-f9ff-5x35-7gfw'
View all threats tagged with 'ghsa-f9ff-5x35-7gfw'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'ghsa-f9ff-5x35-7gfw'
Click on any threat for detailed analysis and mitigation recommendations
GHSA-f9ff-5x35-7gfw: Grackle: Fail-open authorization in the MCP tool layer lets scoped agents perform cross-task and cross-session mutations (IDOR) 0 The @grackle-ai/mcp package (version 0.132.1 and earlier) contains multiple authorization bypass vulnerabilities due to inconsistent enforcement of scoped agent permissions in the MCP tool layer. The MCP server authenticates outbound gRPC calls with a full server API key, but backend handlers do not enforce caller-based authorization, relying solely on the MCP tool layer for access control. Several mutating tools fail to verify caller ancestry or workspace membership, allowing scoped agents to perform unauthorized cross-task and cross-session mutations, including task deletion, updates, session termination, and resumption. Additionally, scoped tokens without workspace association fail open, enabling read-only cross-workspace data disclosure. The scoped-token revocation mechanism is ineffective as it is never invoked outside tests and uses in-memory storage only. These issues collectively represent a high-severity risk of privilege boundary bypass and unauthorized data access or modification. Join the discussion | GCVE Database | 07/02/2026, 19:35:03 UTC Added: 07/02/2026, 22:56:55 UTC |
Showing 1 to 1 of 1 result