CVE-2026-42856 HIGH

CVE-2026-42856: Network-AI: Missing authentication on MCP HTTP endpoint allows unauthenticated privileged tool calls

Vendor Jovancoding
Product Network-AI
Weakness CWE-306 · Missing auth
Published May 11, 2026
Last update May 11, 2026

CVSS base score

8.7/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/call requests with no authentication, session, origin, or token check, and dispatches them directly to the orchestrator's tool registry. The default bind address is 0.0.0.0. As a result, any party with network reachability to the service can enumerate and invoke privileged management tools. This vulnerability is fixed in 5.1.3.

Key dates

02Disclosure timeline

May 11, 2026 CVE published
May 11, 2026 Record updated