Skip to main content

MCP Gateway Registry CVE-2026-14471

| EUVDEUVD-2026-41939 HIGH
SQL Injection (CWE-89)
2026-07-06 AMZN
8.6
CVSS 4.0 · Vendor: AMZN
Share

Severity by source

Vendor (AMZN) PRIMARY
8.6 HIGH
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
vuln.today AI
8.1 HIGH

Remote authenticated user (PR:L, AV:N) with low complexity injects SQL yielding full read (C:H) and write (I:H) of the metrics store; no availability impact and scope unchanged.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (AMZN).

CVSS VectorVendor: AMZN

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
X

Lifecycle Timeline

2
Analysis Generated
Jul 06, 2026 - 21:33 vuln.today
CVSS changed
Jul 06, 2026 - 21:22 NVD
8.1 (HIGH) 8.6 (HIGH)

DescriptionCVE.org

Improper Neutralization of Special Elements in the metrics-service retention policy management component in Amazon mcp-gateway-registry before 1.0.13 might allow an authenticated remote user to execute arbitrary SQL queries via a crafted table_name value that is interpolated into SQL statements in identifier position.

To remediate this issue, users should upgrade to version 1.0.13 or later.

AnalysisAI

SQL injection in the Amazon (agentic-community) mcp-gateway-registry before 1.0.13 allows an authenticated remote user to execute arbitrary SQL queries by supplying a crafted table_name that the metrics-service retention policy component interpolates directly into SQL in identifier position. Because the injection sits in an identifier (table name) position rather than a parameterizable value, it bypasses ordinary prepared-statement protections and grants broad read/write access to the metrics datastore. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Authenticate to MCP Gateway Registry
Delivery
Reach metrics-service retention policy endpoint
Exploit
Submit crafted table_name value
Execution
Break out of SQL identifier position
Persist
Execute arbitrary SQL queries
Impact
Exfiltrate or tamper metrics data

Vulnerability AssessmentAI

Exploitation Exploitation requires an authenticated account on the mcp-gateway-registry (CVSS PR:L) and the ability to reach the metrics-service retention policy management component; the concrete trigger is supplying a crafted table_name value that reaches the retention-policy SQL where it is interpolated in identifier position. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The vendor CVSS 4.0 vector (AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N) scores 8.6 (High), reflecting network reach, low attack complexity, and only low privileges required, with high confidentiality and integrity impact but no availability impact. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who holds any valid low-privileged account on the MCP Gateway Registry submits a crafted table_name value to the metrics-service retention policy management function; because that value is interpolated into a SQL statement as an identifier, the attacker breaks out and runs arbitrary SQL to dump or modify the metrics datastore. The attack is fully remote over the network with low complexity and no victim interaction, but requires prior authentication; no public POC was identified at time of analysis.
Remediation Vendor-released patch: 1.0.13 - upgrade the mcp-gateway-registry deployment to v1.0.13 or later (https://github.com/agentic-community/mcp-gateway-registry/releases/tag/v1.0.13), as documented in advisory GHSA-79qc-vqfr-xx5q and AWS bulletin 2026-052 (https://aws.amazon.com/security/security-bulletins/2026-052-aws/). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all deployments of mcp-gateway-registry and verify current versions. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

Share

CVE-2026-14471 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy