CVE-2026-35402 LOW

CVE-2026-35402: mcp-neo4j-cypher: SSRF and Data Modification via read_only Mode Bypass Through CALL Procedures

Vendor Neo4J-Contrib

Product mcp-neo4j

Weakness CWE-284

Published April 17, 2026

Last update April 20, 2026

View on NVD All CVEs

CVSS base score

2.3/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N

What the vulnerability does

01Description

mcp-neo4j-cypher is an MCP server for executing Cypher queries against Neo4j databases. In versions prior to 0.6.0, the read_only mode enforcement can be bypassed using APOC CALL procedures, potentially allowing unauthorized write operations or server-side request forgery. This issue is fixed in version 0.6.0.

Key dates

02Disclosure timeline

April 17, 2026 CVE published

April 20, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-35402 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/284.html

Related vulnerabilities

CVE-2026-35402: mcp-neo4j-cypher: SSRF and Data Modification via read_only Mode Bypass Through CALL Procedures

01Description

02Disclosure timeline

03References

04Related CVE