CVE-2025-68143HIGH 8.8EPSS p93.9%

CVE-2025-68143CVE-2025-68143

Description

Model Context Protocol Servers is a collection of reference implementations for the model context protocol (MCP). In mcp-server-git versions prior to 2025.9.25, the git_init tool accepted arbitrary filesystem paths and created Git repositories without validating the target location. Unlike other tools which required an existing repository, git_init could operate on any directory accessible to the server process, making those directories eligible for subsequent git operations. The tool was removed entirely, as the server is intended to operate on existing repositories only. Users are advised to upgrade to 2025.9.25 or newer to remediate this issue.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS7.82% probability of exploitation · percentile 93.9% · 2026-06-18T12:00:27Z
Published2025-12-17
Last modified2026-04-14

Underlying weaknesses· 1

CWE-22

References

  1. https://github.com/modelcontextprotocol/servers/commit/eac56e7bcde48fb64d5a973924d05d69a7d876e6
  2. https://github.com/modelcontextprotocol/servers/security/advisories/GHSA-5cgr-j3jf-jw3v

1

TypeTargetConfidenceTier
WeaknessImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal')cwe-220%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-68145
CVE
CVE-2025-66401
CVE
CVE-2025-64109
CVE
CVE-2025-6514
CVE
CVE-2025-66416
CVE
CVE-2025-59333
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.