How serious is CVE-2025-64443?

This vulnerability has a CVSS score of 7.3 out of 10, classified as HIGH severity. No public exploit code has been identified yet.

Which products are affected by CVE-2025-64443?

CVE-2025-64443 affects docker mcp gateway. Check the full CVE details for specific version information.

How do I fix CVE-2025-64443?

To remediate CVE-2025-64443, check for security patches from docker. Apply all available updates and security patches. If no patch is available, implement recommended workarounds or security controls to mitigate the risk.

CVE-2025-64443

High

|7.3

No Exploit

Plain English Summary

AI-powered analysis for quick understanding

An attacker can exploit a vulnerability in MCP Gateway to manipulate servers behind it if the victim visits a malicious website while the gateway is in streaming mode. This requires the attacker to trick the victim into clicking a link or viewing an ad, but the issue is fixed in version 0.28.0.

Technical Description

MCP Gateway allows easy and secure running and deployment of MCP servers. In versions 0.27.0 and earlier, when MCP Gateway runs in sse or streaming transport mode, it is vulnerable to DNS rebinding. An attacker who can get a victim to visit a malicious website or be served a malicious advertisement can perform browser-based exploitation of MCP servers executing behind the gateway, including manipulating tools or other features exposed by those MCP servers. MCP Gateway is not affected when running in the default stdio mode, which does not listen on network ports. Version 0.28.0 fixes this issue.

CVSS Vector Analysis

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionRequired

Confidentiality ImpactHigh

Integrity ImpactHigh

Availability ImpactHigh

ScopeChanged

Vector String

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:L/VI:H/VA:N/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Exploit Resources

Search for proof-of-concept code and exploit modules

GitHub Search Exploit-DB Nuclei Templates Metasploit Vulners

Official References

NIST NVD

Est. Bounty

$1,632($1K-$5K)

Vendor Response

Grade FPatched in 97 days

Quick Information

Published

Dec 3, 2025

4 months ago

Last Modified

Mar 10, 2026

28 days ago

Vendor

docker

Product

mcp gateway

Related Vulnerabilities

CVE-2026-2664Medium

This vulnerability allows a local attacker to read sensitive data from the Docker Desktop environment on Windows, Linux, and macOS, potentially leading to unauthorized access or manipulation of system information. It affects versions up to 4.61.0, so users should upgrade to 4.62.0 or later to protect against this issue.