CVE Catalog

CVE-2026-50287

HighCVSS 8.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.36%

28th percentile - higher than 28% of all known CVEs

Summary

AgenticMail prior to version 0.9.27 exposed a Streamable HTTP transport without an authentication layer, allowing remote clients to directly call tools. This issue has been patched in version 0.9.27.

Risk Assessment

The lack of authentication on the /mcp endpoint poses a risk of unauthorized access to application functions, potentially leading to data leaks or unauthorized actions.

Recommendation

It is recommended to upgrade to version 0.9.27 or later to secure the application against this vulnerability.

Original NVD description (English source)

AgenticMail gives AI agents real email addresses and phone numbers. Prior to version 0.9.27, @agenticmail/mcp exposes a Streamable HTTP transport when started with --http or MCP_HTTP=1. In that mode, the /mcp endpoint accepts requests without any HTTP authentication layer. A remote client can initialize a session and call tools directly. This issue has been patched in version 0.9.27.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS