CVE-2026-33946— MCP Ruby SDK: Insufficient Session Binding Allows SSE Stream Hijacking via Session ID Replay
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-33946
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
MCP Ruby SDK: Insufficient Session Binding Allows SSE Stream Hijacking via Session ID Replay
Source: NVD (National Vulnerability Database)
Vulnerability Description
MCP Ruby SDK is the official Ruby SDK for Model Context Protocol servers and clients. Prior to version 0.9.2, the Ruby SDK's streamable_http_transport.rb implementation contains a session hijacking vulnerability. An attacker who obtains a valid session ID can completely hijack the victim's Server-Sent Events (SSE) stream and intercept all real-time data. Version 0.9.2 contains a patch.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
会话固定
Source: NVD (National Vulnerability Database)
Vulnerability Title
MCP Ruby SDK 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MCP Ruby SDK是Model Context Protocol开源的一个用于构建和交互模型上下文协议客户端的Ruby软件开发工具包。 MCP Ruby SDK 0.9.2之前版本存在安全漏洞,该漏洞源于streamable_http_transport.rb实现存在会话劫持问题,可能导致攻击者完全劫持受害者的服务器发送事件流并拦截所有实时数据。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| modelcontextprotocol | ruby-sdk | < 0.9.2 | - |
II. Public POCs for CVE-2026-33946
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-33946
请登录查看更多情报信息。
- Release v0.9.2 · modelcontextprotocol/ruby-sdk · GitHubx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2026-33946
IV. Related Vulnerabilities
Same vendor: modelcontextprotocol
- CVE-2026-35568
MCP Java-SDK has a DNS Rebinding Vulnerability - CVE-2026-34742
Model Context Protocol Go SDK: DNS Rebinding Protection Disa - CVE-2026-34237
MCP Java SDK has a Hardcoded Wildcard CORS (Access-Control-A - CVE-2026-33252
MCP Go SDK Allows Cross-Site Tool Execution for HTTP Servers - CVE-2026-27896
MCP Go SDK Vulnerable to Improper Handling of Case Sensitivi
Same weakness: CWE-384
V. Comments for CVE-2026-33946
No comments yet