Description
MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request. Version 1.4.3 contains a patch.
Published: 2026-01-16
Score: 9.8 Critical
EPSS: 27.4% Moderate
KEV: No
Impact: Remote Code Execution
Action: Immediate Patch
AI Analysis

Impact

This vulnerability allows an unauthenticated attacker to send a crafted HTTP request to MCPJam inspector, which by default listens on all network interfaces. The request triggers the installation of an MCP server, resulting in remote code execution on the host. The weakness is a missing authentication control (CWE-306) that permits unrestricted execution of privileged operations.

Affected Systems

MCPJam inspector versions 1.4.2 and earlier are affected. The product is the local-first development platform for MCP servers.

Risk and Exploitability

The issue scores a CVSS base of 9.8, an EPSS of 27%, and is not yet listed in the CISA KEV catalog. The exploit requires no authentication and can be performed from any network that can reach the HTTP endpoint, as the default binding is 0.0.0.0, making the risk high for exposed or open machines.

Generated by OpenCVE AI on April 18, 2026 at 05:38 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade MCPJam inspector to version 1.4.3 or later, which contains the patch that removes the unauthenticated installation capability.
  • Restrict network access to the inspector’s HTTP interface by configuring firewall rules or binding the service to 127.0.0.1, preventing remote connections.
  • Verify that the listening address is set to the loopback interface and that no port forwarding exposes the service to external networks.

Generated by OpenCVE AI on April 18, 2026 at 05:38 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-232v-j27c-5pp6 REC in MCPJam inspector due to HTTP Endpoint exposes
History

Fri, 13 Mar 2026 14:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:mcpjam:inspector:*:*:*:*:*:*:*:*

Mon, 19 Jan 2026 09:45:00 +0000

Type Values Removed Values Added
First Time appeared Mcpjam
Mcpjam inspector
Vendors & Products Mcpjam
Mcpjam inspector

Fri, 16 Jan 2026 21:30:00 +0000

Type Values Removed Values Added
Description MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request. MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request. Version 1.4.3 contains a patch.
References

Fri, 16 Jan 2026 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 16 Jan 2026 20:15:00 +0000

Type Values Removed Values Added
Description MCPJam inspector is the local-first development platform for MCP servers. Versions 1.4.2 and earlier are vulnerable to remote code execution (RCE) vulnerability, which allows an attacker to send a crafted HTTP request that triggers the installation of an MCP server, leading to RCE. Since MCPJam inspector by default listens on 0.0.0.0 instead of 127.0.0.1, an attacker can trigger the RCE remotely via a simple HTTP request.
Title REC in MCPJam inspector due to HTTP Endpoint exposes
Weaknesses CWE-306
References
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Mcpjam Inspector
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-01-16T21:15:53.738Z

Reserved: 2026-01-15T15:45:01.958Z

Link: CVE-2026-23744

cve-icon Vulnrichment

Updated: 2026-01-16T20:20:51.618Z

cve-icon NVD

Status : Analyzed

Published: 2026-01-16T20:15:51.763

Modified: 2026-03-13T14:19:59.880

Link: CVE-2026-23744

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-18T05:45:38Z

Weaknesses