CVE-2026-53509: @aborruso/ckan-mcp-server: SSRF via base_url allows access to internal networks (Potential fix bypass of CVE-2026-33060)
MEDIUM
CVSS 5.7
Exploit Available
Published: July 7, 2026 | Last Modified: July 7, 2026
Description
@aborruso/ckan-mcp-server: SSRF via base_url allows access to internal networks (Potential fix bypass of CVE-2026-33060)
Ghostwire Analysis — What This Means Practically
- Medium CVSS score indicates moderate risk — exploitation requires specific conditions or results in limited impact.
- Exploit code is reported to be available, increasing the likelihood of active exploitation.
This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.
References