Jan 2026: Microsoft Playwright MCP Server < 0.0.40 DNS Rebinding via Missing Origin Header Validatio
CVE-2025-9611 Published on January 7, 2026

Microsoft Playwright MCP Server < 0.0.40 DNS Rebinding via Missing Origin Header Validation
Microsoft Playwright MCP Server versions prior to 0.0.40 fails to validate the Origin header on incoming connections. This allows an attacker to perform a DNS rebinding attack via a victims web browser and send unauthorized requests to a locally running MCP server, resulting in unintended invocation of MCP tool endpoints.

NVD

Weakness Type

Exposed Dangerous Method or Function

The software provides an Applications Programming Interface (API) or similar interface for interaction with external actors, but the interface includes a dangerous method or function that is not properly restricted.

Affected Versions

Microsoft Playwright:

Before 0.0.40 is affected.

Exploit Probability

EPSS

0.25%

Percentile

48.04%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Jan 2026: Microsoft Playwright MCP Server < 0.0.40 DNS Rebinding via Missing Origin Header ValidatioCVE-2025-9611 Published on January 7, 2026

Weakness Type

Exposed Dangerous Method or Function

Affected Versions

Exploit Probability

Jan 2026: Microsoft Playwright MCP Server < 0.0.40 DNS Rebinding via Missing Origin Header Validatio
CVE-2025-9611 Published on January 7, 2026