DNS Rebinding Vulnerability in MCP Gateway by Docker
CVE-2025-64443

7.3HIGH

Key Information:

Vendor: Docker
Status: Mcp-gateway
Vendor: CVE Published:; 3 December 2025

What is CVE-2025-64443?

MCP Gateway enables the efficient and secure deployment of MCP servers; however, versions up to 0.27.0 are susceptible to DNS rebinding when operating in sse or streaming transport mode. This vulnerability exploits the gateway’s capabilities, allowing an attacker to compromise MCP servers by tricking users into accessing malicious websites or ads. This can lead to unauthorized manipulation of tools and features provided by the MCP servers behind the gateway. The issue is mitigated in version 0.28.0, which does not exhibit this vulnerability.

Affected Version(s)

mcp-gateway < 0.28.0

References

https://github.com/docker/mcp-gateway/security/advisories...

x_refsource_CONFIRM

https://github.com/docker/mcp-gateway/commit/6b076b2479d8...

x_refsource_MISC

CVSS V4

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 3, 2025
Vulnerability Reserved
Nov 3, 2025

JSON