CVE-2025-53110 – @modelcontextprotocol/server-filesystem

Package

Manager: npm
Name: @modelcontextprotocol/server-filesystem
Vulnerable Version: >=0 <=0.6.2 || >=2025.1.14 <2025.7.1

Severity

Level: High

CVSS v3.1: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:H/SI:H/SA:H

EPSS: 0.00096 pctl0.27527

Details

@modelcontextprotocol/server-filesystem vulnerability allows for path validation bypass via colliding path prefix Versions of Filesystem prior to 0.6.3 & 2025.7.1 could allow access to unintended files in cases where the prefix matches an allowed directory. Users are advised to upgrade to 2025.7.1 to resolve the issue. Thank you to Elad Beber (Cymulate) for reporting these issues.

Metadata

Created: 2025-07-01T20:14:00Z
Modified: 2025-07-02T18:57:22Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/07/GHSA-hc55-p739-j48w/GHSA-hc55-p739-j48w.json
CWE IDs: ["CWE-22"]
Alternative ID: GHSA-hc55-p739-j48w
Finding: F063
Auto approve: 1