All 1 CVE vulnerabilities found in mcp-pinot, with AI-generated Chinese analysis, references, and POCs.
Vendor: startreedata
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-49257 | mcp-pinot: Unauthenticated tool invocation via default oauth_enabled=False + host 0.0.0.0 bind CWE-306 | 10.0 | Critical | 2026-06-18 |
All 1 known CVE vulnerabilities affecting mcp-pinot with full Chinese analysis, references, and POCs where available.