CVE Catalog

CVE-2026-49291

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.26%

18th percentile — higher than 18% of all known CVEs

Summary

The mcp-memory-service, a semantic memory layer for AI applications, prior to version 10.65.3 required only the `read` OAuth scope for all requests. This allowed read-only OAuth clients to invoke mutating tools like `store_memory` and `delete_memory`.

Risk Assessment

Organizations may be exposed to unauthorized modifications of semantic memory, potentially leading to data integrity loss and malfunctioning AI applications.

Recommendation

It is recommended to upgrade to version 10.65.3 to secure the MCP endpoint against unauthorized access to mutating tools.

Original NVD description (English source)

mcp-memory-service is a semantic memory layer for AI applications. Prior to version 10.65.3, the HTTP MCP JSON-RPC endpoint at `/mcp` requires only OAuth `read` scope for all requests, then dispatches `tools/call` directly to handlers that include mutating tools. A read-only OAuth client can call `store_memory` and `delete_memory` through MCP even though the corresponding REST endpoints require `write` scope. Version 10.65.3 patches the issue.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS