CVE-2025-58444

An XSS issue was reported in the MCP Inspector local development tool when connecting to an untrusted remote MCP server with a malicious redirect URI. This could be leveraged to interact directly with the inspector proxy to trigger arbitrary command execution. Users are advised to update to 0.16.6 to resolve this issue.

Thank you to the following researchers for their reports and contributions:

Raymond (Veria Labs)
Gavin Zhong, superboyzjc@gmail.com & Shuyang Wang, swang@obsidiansecurity.com.

Published: Sep 8, 2025
Updated: Sep 9, 2025
CVE: CVE-2025-58444
GHSA: GHSA-g9hg-qhmf-q45m
Severity: High
Exploit:

No technical information available.

CWEs:

CWE-94
CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
@modelcontextprotocol / inspector	-	0.16.6

https://github.com/modelcontextprotocol/inspector/commit/650f3090d26344a672026b737d81586595bb1f60
https://github.com/modelcontextprotocol/inspector/security/advisories/GHSA-g9hg-qhmf-q45m

Vulnerability Database

CVE-2025-58444