Description

MCP Gateway allows easy and secure running and deployment of MCP servers. In versions 0.27.0 and earlier, when MCP Gateway runs in sse or streaming transport mode, it is vulnerable to DNS rebinding. An attacker who can get a victim to visit a malicious website or be served a malicious advertisement can perform browser-based exploitation of MCP servers executing behind the gateway, including manipulating tools or other features exposed by those MCP servers. MCP Gateway is not affected when running in the default stdio mode, which does not listen on network ports. Version 0.28.0 fixes this issue.

INFO

Published Date :

2025-12-03T17:41:59.272Z

Last Modified :

2025-12-03T18:14:24.648Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-64443 vulnerability.

Vendors Products
Docker
  • Docker
  • Mcp Gateway
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-64443.

URL Resource
https://github.com/docker/mcp-gateway/commit/6b076b2479d8d1345c50c112119c62978d46858e cve-icon cve-icon
https://github.com/docker/mcp-gateway/security/advisories/GHSA-46gc-mwh4-cc5r cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact