CVE-2025-53365 – Apache MCP Python SDK Denial of Service

July 4, 2025

CVE ID : CVE-2025-53365

Published : July 4, 2025, 10:15 p.m. | 29 minutes ago

Description : The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing the server to crash and requiring a restart to restore service. Impact may vary depending on the deployment conditions, and presence of infrastructure-level resilience measures. Version 1.10.0 contains a patch for the issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-53366 – Apache MCP Model Context Protocol Denial of Service

Next Article CVE-2025-7069 – HDF5 Heap-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-40556 – “BACnet ATEC Denial of Service Vulnerability”

May 13, 2025

CVE ID : CVE-2025-40556

Published : May 13, 2025, 10:15 a.m. | 1 hour, 52 minutes ago

Description : A vulnerability has been identified in BACnet ATEC 550-440 (All versions), BACnet ATEC 550-441 (All versions), BACnet ATEC 550-445 (All versions), BACnet ATEC 550-446 (All versions). Affected devices improperly handle specific incoming BACnet MSTP messages. This could allow an attacker residing in the same BACnet network to send a specially crafted MSTP message that results in a denial of service condition of the targeted device. A power cycle is required to restore the device’s normal operation.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

Laravel in the First Half of 2025

Laravel in the First Half of 2025

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

GOnnect – easy to use VoIP client

GOnnect – easy to use VoIP client

Gnuinos – spin of Devuan Linux

5 Best Free and Open Source Backend Electronic Circuit Simulators

CVE-2025-53365 – Apache MCP Python SDK Denial of Service

CVE-2025-53602 – Zipkin Spring Boot Actuator Heapdump Information Disclosure

CVE-2025-7068 – HDF5 Memory Leak Vulnerability

La Danimarca saluta Microsoft: al Ministero per la digitalizzazione arriva LibreOffice e GNU/Linux

AI Films Can Now Win Oscars, But Don’t Fire Your Screenwriter Yet

9 Easter Newsletter Ideas to Generate Engagement and Sales

CVE-2025-4022 – Web-Arena-X Web Content Injection Vulnerability

CVE-2025-40556 – “BACnet ATEC Denial of Service Vulnerability”

12 Best Free and Open Source Linux Business Intelligence Software

Denmark’s Government Ditches Microsoft for Open Source

Microsoft Copilot is one step closer to being a true friend — it now remembers everything about you

CVE-2025-53365 – Apache MCP Python SDK Denial of Service

Related Posts