{"uuid": "2d08c674-0869-4d8c-b42a-29a8dd83a7bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48814", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3moj5qnuvcd2w", "content": "CRITICAL: Jovancoding Network-AI \u22645.7.1 lets unauthenticated callers invoke all MCP tools if default secret is empty. Upgrade to 5.7.2 now. https://radar.offseq.com/threat/cve-2026-48814-cwe-306-missing-authentication-for--a37c283f4afc7554 #OffSeq #CVE202648814 #AppSec", "creation_timestamp": "2026-06-17T20:30:15.025720Z"}