Filtered by vendor Neo4j
                         Subscriptions
                    
                    
                
                        Filtered by product Cypher Mcp Server
                         Subscriptions
                    
                    
                
                    Total
                    1 CVE
                
            | CVE | Vendors | Products | Updated | CVSS v3.1 | 
|---|---|---|---|---|
| CVE-2025-10193 | 1 Neo4j | 2 Cypher Mcp Server, Neo4j | 2025-09-12 | N/A | 
| DNS rebinding vulnerability in Neo4j Cypher MCP server allows malicious websites to bypass Same-Origin Policy protections and execute unauthorised tool invocations against locally running Neo4j MCP instances. The attack relies on the user being enticed to visit a malicious website and spend sufficient time there for DNS rebinding to succeed. | ||||
                            
                                
                                
                                    Page 1 of 1.