Path Traversal Vulnerability in Google APIs MCP Toolbox
CVE-2026-11720

9.3CRITICAL

Key Information:

Vendor: Google
Status: Mcp Toolbox For Databases (googleapis/mcp-toolbox)
Vendor: CVE Published:; 29 June 2026

What is CVE-2026-11720?

A path traversal vulnerability has been identified in the URL builder of Google APIs MCP Toolbox, which occurs during the construction of downstream API requests. The tool's URL builder inadequately manages user-controlled parameters, allowing an attacker to introduce directory traversal sequences. This flaw enables the possibility of making unauthorized API requests to unintended endpoints within the same target host. Such exploitation can result in the unauthorized exposure of sensitive information by bypassing access restrictions that should be in place.

Affected Version(s)

MCP Toolbox for Databases (googleapis/mcp-toolbox) 0 < 1.3.0

References

https://github.com/googleapis/mcp-toolbox/pull/3218

CVSS V4

Score:

9.3

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
Jun 9, 2026

Credit

Ryan Vonbrubeck / @dodge1218

CVE-2026-11720 Data

JSON