CVE-2026-42856
published 2026-05-11CVE-2026-42856: Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/call requests with no…
PriorityP356high8.7CVSS 4.0
AVNACLATNPRNUINVCNVIHVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EPSS
0.47%
37.3th percentile
Network-AI is a TypeScript/Node.js multi-agent orchestrator. Prior to 5.1.3, the MCP HTTP transport accepts JSON-RPC tools/call requests with no authentication, session, origin, or token check, and dispatches them directly to the orchestrator's tool registry. The default bind address is 0.0.0.0. As a result, any party with network reachability to the service can enumerate and invoke privileged management tools. This vulnerability is fixed in 5.1.3.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jovancoding | network-ai | < 5.1.3 | 5.1.3 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Jovancoding Network-AI up to 5.1.2 TypeScript/Node.js missing authentication (GHSA-fj4g-2p96-q6m3)
vuldb·2026-05-11·CVSS 8.7
CVE-2026-42856 [HIGH] Jovancoding Network-AI up to 5.1.2 TypeScript/Node.js missing authentication (GHSA-fj4g-2p96-q6m3)
A vulnerability classified as critical has been found in Jovancoding Network-AI up to 5.1.2. This affects an unknown function of the file TypeScript/Node.js. The manipulation leads to missing authentication.
This vulnerability is documented as CVE-2026-42856. The attack can be initiated remotely. There is not any exploit available.
It is recommended to upgrade the affected component.
GHSA
Network-AI missing authentication on MCP HTTP endpoint, which allows unauthenticated privileged tool calls
ghsa·2026-05-05
CVE-2026-42856 [HIGH] CWE-306 Network-AI missing authentication on MCP HTTP endpoint, which allows unauthenticated privileged tool calls
Network-AI missing authentication on MCP HTTP endpoint, which allows unauthenticated privileged tool calls
# Security Advisory: Missing Authentication for Critical Function in `Jovancoding/Network-AI`
| Field | Value |
|---|---|
| Project | `Jovancoding/Network-AI` |
| Repository | https://github.com/Jovancoding/Network-AI |
| Affected commit | `c344f2053eb0d49395988f803bf92f2a86b2a0d0` |
| Affected tested version | `5.1.2` |
| Vulnerability type | CWE-306: Missing Authentication for Critical Function |
| Severity | High |
| Authentication required | None |
| Default network exposure | Bind address `0.0.0.0` |
| Reporter validation date | 2026-04-21 |
## Summary
The MCP HTTP transport accepts JSON-RPC `tools/call` requests with no authentication, session, origin, or token check, and di
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2026-05-11
Published