Description
A vulnerability was found in ahujasid blender-mcp up to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b. The affected element is the function requests.get of the file src/blender_mcp/server.py of the component ZIP File Handler. The manipulation of the argument zip_file_url results in server-side request forgery. The attack can be executed remotely. The exploit has been made public and could be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The patch is identified as 5b37be25242e73dc4cf1328974d30458b9e5d67e. It is advisable to implement a patch to correct this issue.
Published: 2026-06-02
Score: 5.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability lies in the requests.get function within the server.py file of the ZIP File Handler component of ahujasid blender‑mcp. Manipulating the zip_file_url argument allows an attacker to cause the server to make arbitrary HTTP requests to internal or external resources. This results in a server‑side request forgery (SSRF) condition, enabling potential data exfiltration, internal network discovery, or exploitation of other services without needing local access. The weakness is a classic information‐leak / request‑forgery defect (CWE‑918). The impact is limited to entities that can reach the vulnerable endpoint and provide a zip_file_url value; it does not give direct code execution but can be leveraged for wider attacks.

Affected Systems

All versions of ahujasid blender‑mcp up to commit 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b are affected. Because the project uses rolling releases, a precise version number cannot be given. The official fix is contained in commit 5b37be25242e73dc4cf1328974d30458b9e5d67e, which is available in the upstream repository and referenced in pull request 205.

Risk and Exploitability

The CVSS score is 5.3, indicating moderate severity. EPSS is not provided, and the issue is not listed in the CISA KEV catalog, suggesting low immediate exploitation probability. However, the vulnerability is publicly disclosed and exploitable from remote hosts, meaning that unpatched instances could be targeted by attackers. The attack vector is inferred to be remote HTTP request: an attacker sends a crafted ZIP_File_URL via the vulnerable endpoint to force outbound connections.

Generated by OpenCVE AI on June 3, 2026 at 03:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Retrieve and merge the patch commit 5b37be25242e73dc4cf1328974d30458b9e5d67e (or apply the equivalent pull request) to update the server.py logic.
  • As an interim measure, restrict outbound traffic from the server to only trusted domains or use a firewall whitelist, blocking unauthorized SSRF requests.
  • Once the patch is applied, update the project to the latest rolling release to ensure the fix remains in effect and to receive future security improvements.

Generated by OpenCVE AI on June 3, 2026 at 03:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 03 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 03 Jun 2026 02:30:00 +0000

Type Values Removed Values Added
Description A vulnerability was found in ahujasid blender-mcp up to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b. The affected element is the function requests.get of the file src/blender_mcp/server.py of the component ZIP File Handler. The manipulation of the argument zip_file_url results in server-side request forgery. The attack can be executed remotely. The exploit has been made public and could be used. This product implements a rolling release for ongoing delivery, which means version information for affected or updated releases is unavailable. The patch is identified as 5b37be25242e73dc4cf1328974d30458b9e5d67e. It is advisable to implement a patch to correct this issue.
Title ahujasid blender-mcp ZIP File server.py requests.get server-side request forgery
First Time appeared Ahujasid
Ahujasid blender-mcp
Weaknesses CWE-918
CPEs cpe:2.3:a:ahujasid:blender-mcp:*:*:*:*:*:*:*:*
Vendors & Products Ahujasid
Ahujasid blender-mcp
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Ahujasid Blender-mcp
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-03T13:28:22.477Z

Reserved: 2026-06-02T15:24:57.055Z

Link: CVE-2026-10662

cve-icon Vulnrichment

Updated: 2026-06-03T13:28:18.652Z

cve-icon NVD

Status : Received

Published: 2026-06-02T23:16:34.637

Modified: 2026-06-02T23:16:34.637

Link: CVE-2026-10662

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-03T05:15:25Z

Weaknesses