DNS Rebinding Vulnerability in Neo4j Cypher MCP Server
CVE-2025-10193

7.4HIGH

Key Information:

Vendor

Neo4j

Status
Neo4j-cypher Mcp Server
Vendor
CVE Published:
11 September 2025

What is CVE-2025-10193?

The DNS rebinding vulnerability in Neo4j's Cypher MCP server enables attackers to bypass Same-Origin Policy safeguards, allowing unauthorized execution of commands on locally running Neo4j MCP instances. This exploitation occurs through a malicious website that entices users to visit for an extended period, facilitating the DNS rebinding attack. The resulting security risk could compromise the integrity and availability of Neo4j systems, necessitating prompt attention to mitigate potential threats.

Affected Version(s)

neo4j-cypher MCP server 0.2.2 <= 0.3.1

References

https://neo4j.com/security/cve-2025-10193
vendor-advisory
https://github.com/neo4j-contrib/mcp-neo4j/security/advis...
third-party-advisory
https://github.com/neo4j-contrib/mcp-neo4j/releases/tag/m...
release-notes

CVSS V4

Score:
7.4
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
High
Attack Required:
Physical
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Evan Harris
.
CVE-2025-10193 : DNS Rebinding Vulnerability in Neo4j Cypher MCP Server