GHSA-6pr5-9p6v-xxrqHighCVSS 7.4

A vulnerability exists in the Kong Konnect Model Context Protocol (MCP) server prior to version 1...

Published
July 3, 2026
Last Modified
July 3, 2026

🔗 CVE IDs covered (1)

📋 Description

A vulnerability exists in the Kong Konnect Model Context Protocol (MCP) server prior to version 1.0.0, which could allow a remote attacker to perform an indirect prompt injection attack and execute unintended API requests.

🔗 References (3)