216.73.216.86

CVE-2026-48989

· Published 18/06/2026 00:16 · Author: The MITRE Corporation

Labels: CVE-2026-48989 2026-06-17CVE-2026-48989CWE-306[email protected]

Essential information

Published
18/06/2026 00:16
Modified
Author
The MITRE Corporation
Creator
The MITRE Corporation
CVSS
9.3 CRITICAL (v4.0)
CISA KEV
No
CWE
CWE-306
CVSS vector

CVSS metrics

Description

Windows-MCP is an open-source project that integrates AI agents with Windows. In versions prior to 0.7.5, certain HTTP modes exposed the MCP control plane without authentication while enabling wildcard CORS (allow_origins=*, allow_methods=*, allow_headers=*). Because the same server also exposed a PowerShell tool that executes caller-controlled commands as the Windows user running Windows-MCP, attackers could reach the control plane from arbitrary origins or non-browser clients and achieve arbitrary PowerShell execution. This issue was fixed in version 0.7.5.

NVD status

NVD
View on NVD