Access Control Security Flaw in Royal Plugins' Royal MCP
CVE-2026-54842
8.1HIGH
What is CVE-2026-54842?
A missing authorization vulnerability exists in Royal Plugins' Royal MCP, which could allow an attacker to exploit incorrectly configured access control levels. This issue affects versions of Royal MCP up to and including 1.4.25, potentially leading to unauthorized actions within the application. It's essential for users to evaluate their configurations and apply necessary updates to mitigate the risk associated with this vulnerability.
Affected Version(s)
Royal MCP <= 1.4.25