{"uuid": "94adfdb2-4873-47e6-b1f4-29b966975af0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11717", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mol5hf2ood27", "content": "CRITICAL severity: googleapis/mcp-toolbox v1.0.0 lets tokens missing 'active' bypass auth checks \u2014 risking unauthorized access. No fix yet. Monitor vendor updates for remediation. https://radar.offseq.com/threat/cve-2026-11717-cwe-287-improper-authentication-in--13893f570bf80e27 #OffSeq #CloudSec...", "creation_timestamp": "2026-06-18T15:30:22.913987Z"}