@modelcontextprotocol/server-filesystem vulnerabilities

MCP server for filesystem access

  • latest version

    2025.8.21

  • latest non vulnerable version

  • first published

    9 months ago

  • latest version published

    9 days ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the @modelcontextprotocol/server-filesystem package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Directory Traversal

    <2025.7.1
    • H
    Symlink Attack

    <2025.7.1

    Package versions

    13 VERSIONS IN TOTAL
    versionpublisheddirect vulnerabilities
    2025.8.2121 Aug, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2025.8.1818 Aug, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2025.7.2931 Jul, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2025.7.11 Jul, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    2025.3.2828 Mar, 2025
    • 0
      C
    • 2
      H
    • 0
      M
    • 0
      L
    2025.1.1414 Jan, 2025
    • 0
      C
    • 2
      H
    • 0
      M
    • 0
      L
    0.6.24 Dec, 2024
    • 0
      C
    • 2
      H
    • 0
      M
    • 0
      L
    0.6.13 Dec, 2024
    • 0
      C
    • 2
      H
    • 0
      M
    • 0
      L
    0.6.03 Dec, 2024
    • 0
      C
    • 2
      H
    • 0
      M
    • 0
      L
    0.5.125 Nov, 2024
    • 0
      C
    • 2
      H
    • 0
      M
    • 0
      L