CVE-2025-53110 — @modelcontextprotocol/server-filesystem vulnerability allows for path validation

Description

Versions of Filesystem prior to 0.6.3 & 2025.7.1 could allow access to unintended files in cases where the prefix matches an allowed directory. Users are advised to upgrade to 2025.7.1 to resolve the issue. Thank you to Elad Beber (Cymulate) for reporting these issues.

How to fix CVE-2025-53110

No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.

npm/@modelcontextprotocol/server-filesystem—no fix listed

Is CVE-2025-53110 being exploited?

Low — EPSS is 0.3%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0, <= 0.6.2

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 4.0	—	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:H/SC:H/SI:H/SA:H

References (4)

ADVISORYnvd.nist.gov/vuln/detail/CVE-2025-53110
PATCHgithub.com/modelcontextprotocol/servers
WEBgithub.com/modelcontextprotocol/servers/commit/cc99bdabdcad93a58877c5f3ab20e21d4394423d
WEBgithub.com/modelcontextprotocol/servers/security/advisories/GHSA-hc55-p739-j48w