Cyber Resilience

CVE-2026-7216

Medium

Published: 28 April 2026

Published
28 April 2026
Modified
29 April 2026
KEV Added
Patch
CVSS Score v4 5.5 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0007 20.6th percentile
Risk Priority 11 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-7216 is a medium-severity Path Traversal (CWE-22) vulnerability. Its CVSS base score is 5.5 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 20.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as AI Agent Protocols and Integrations; in the Supply Chain and Deployment risk domain.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2026-7216 is a path traversal vulnerability (CWE-22) affecting the donchelo/processing-claude-mcp-bridge project up to commit e017b20a4b592a45531a6392f494007f04e661bd. The flaw exists in an unknown function within the processing_server.py file of the create_sketch tool, where manipulation of the sketch_name argument enables path traversal.

Remote attackers require no privileges (PR:N) and can exploit the vulnerability over the network (AV:N) with low attack complexity (AC:L) and no user interaction (UI:N). Exploitation yields low impacts to confidentiality, integrity, and availability (C:L/I:L/A:L), resulting in a CVSS v3.1 base score of 7.3 in an unchanged scope (S:U). A public exploit is available and could be used for attacks.

The project follows a rolling release approach, providing no specific details on affected or updated versions. Developers were informed early via GitHub issue #1 but have not responded. Mitigation details are absent from available advisories, with references including the project repository (https://github.com/donchelo/processing-claude-mcp-bridge/), the issue tracker (https://github.com/donchelo/processing-claude-mcp-bridge/issues/1), and VULDB entries (https://vuldb.com/submit/802090, https://vuldb.com/vuln/359816, https://vuldb.com/vuln/359816/cti).

EU & UK References

Vulnerability details

A weakness has been identified in donchelo processing-claude-mcp-bridge up to e017b20a4b592a45531a6392f494007f04e661bd. Impacted is an unknown function of the file processing_server.py of the component create_sketch Tool. This manipulation of the argument sketch_name causes path traversal. Remote exploitation of the attack is…

more

possible. The exploit has been made available to the public and could be used for attacks. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. The project was informed of the problem early through an issue report but has not responded yet.

CWE(s)

AI Security AnalysisAI

AI Category
AI Agent Protocols and Integrations
Risk Domain
Supply Chain and Deployment
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: claude, mcp

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1105 Ingress Tool Transfer Command And Control
Adversaries may transfer tools or other files from an external system into a compromised environment.
Why these techniques?

Remote unauthenticated path traversal in processing_server.py (create_sketch) directly enables exploitation of public-facing applications (T1190) and facilitates arbitrary file writes for tool ingress (T1105).

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2026-41180Shared CWE-22
CVE-2026-7398Shared CWE-22
CVE-2026-39308Shared CWE-22
CVE-2026-25592Shared CWE-22
CVE-2026-21878Shared CWE-22
CVE-2026-27969Shared CWE-22
CVE-2026-6957Shared CWE-22
CVE-2026-32055Shared CWE-22
CVE-2026-23949Shared CWE-22
CVE-2026-41589Shared CWE-22

Affected Assets

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires validation of the sketch_name argument in processing_server.py to block path traversal sequences like '../', directly preventing remote exploitation of this CWE-22 vulnerability.

prevent

Mandates timely remediation of the specific path traversal flaw in the create_sketch tool up to commit e017b20a4b592a45531a6392f494007f04e661bd, eliminating the vulnerability despite the rolling release model.

prevent

Enforces access control policies to deny unauthorized file access outside the intended directory, providing defense-in-depth even if input validation fails.

References