DNS Rebinding in Neo4j Cypher MCP Enables SOP Bypass
CVE-2025-10193 Published on September 11, 2025

Neo4j Cypher MCP server is vulnerable to DNS rebinding attacks
DNS rebinding vulnerability in Neo4j Cypher MCP server allows malicious websites to bypass Same-Origin Policy protections and execute unauthorised tool invocations against locally running Neo4j MCP instances. The attack relies on the user being enticed to visit a malicious website and spend sufficient time there for DNS rebinding to succeed.

Vendor Advisory NVD

Weakness Type

Origin Validation Error

The software does not properly verify that the source of data or communication is valid.

Affected Versions

neo4j-cypher MCP server:

Version 0.2.2, <= 0.3.1 is affected.

Exploit Probability

EPSS

0.03%

Percentile

9.80%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

DNS Rebinding in Neo4j Cypher MCP Enables SOP BypassCVE-2025-10193 Published on September 11, 2025

Weakness Type

Origin Validation Error

Affected Versions

Exploit Probability

DNS Rebinding in Neo4j Cypher MCP Enables SOP Bypass
CVE-2025-10193 Published on September 11, 2025