EresusSecurity

Security Advisories

Vulnerabilities and coordinated disclosures published by the Eresus research team.

mcphub-unauthenticated-rce-via-server-registrationCritical

Unauthenticated Remote Code Execution via Arbitrary Command Injection in MCPHub Server Registration

MCPHub accepts attacker-controlled command and args values during server registration and spawns them through STDIO, enabling full remote code execution on the host.

2026-04-16 · CVSS 10.0
mcphub-sse-username-impersonationCritical

SSE Endpoint Accepts Arbitrary Username from URL Path, Enabling User Impersonation in MCPHub

MCPHub accepts an attacker-controlled username from the SSE URL path and creates internal user context without authenticating or validating the account, enabling user impersonation.

2026-04-16 · CVSS 9.1
mcphub-skipauth-authentication-bypassCritical

Authentication Bypass via skipAuth Configuration Grants Full Admin Access in MCPHub

When skipAuth is enabled, MCPHub bypasses both authentication and admin authorization checks, allowing any unauthenticated user to access privileged API functionality.

2026-04-16 · CVSS 9.8
eresus-adv-2026-005Critical

Remote Code Execution via nodeIntegration: true in Cherry Studio SearchService

Cherry Studio SearchService creates hidden Electron BrowserWindow instances with nodeIntegration enabled, allowing attacker-controlled web pages to execute OS commands.

2026-04-14 · CVSS 9.8
eresus-adv-2026-004Critical

Zero-Day Analysis: Authenticated SSRF in n8n-mcp (GHSA-4ggg-h7ph-26qr)

Authenticated SSRF in n8n-mcp multi-tenant HTTP mode allows attackers with a valid token to force server-side requests to internal and cloud metadata resources.

2026-04-09 · CVSS 8.6
eresus-adv-2026-003Critical

Critical Authentication Bypass via JWT Signature Verification Disabled in yargi-mcp

yargi-mcp decodes Clerk JWT tokens with signature verification disabled, enabling authentication bypass, forged identities, and arbitrary scope escalation.

2026-04-04 · CVSS 9.8
eresus-adv-2026-002High

ERESUS-ADV-2026-002: Server-Side Request Forgery (SSRF) via Cloud Metadata Endpoints

Server-side request forgery in cloud-hosted URL fetch flows can expose metadata services, temporary IAM credentials, and internal configuration.

2026-03-28 · CVSS 8.6
eresus-adv-2026-001Critical

Critical RCE Vulnerability in Legacy Enterprise Gateway

Unauthenticated remote code execution in a legacy enterprise API gateway allows command execution with root privileges through crafted forwarding headers.

2026-03-15 · CVSS 9.8