{"uuid": "d38b4e06-5b5a-4fac-8889-74947ea096f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11717", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116771823299071551", "content": "CVE-2026-11717: CRITICAL vuln in googleapis/mcp-toolbox v1.0.0. Improper auth check lets tokens without 'active' field bypass controls \u2014 unauthorized access risk. Patch unconfirmed, monitor advisories: https://radar.offseq.com/threat/cve-2026-11717-cwe-287-improper-authentication-in--13893f570bf80e27 #OffSeq #CVE202611717 #OAuth2 #CloudSecurity", "creation_timestamp": "2026-06-18T15:30:29.805444Z"}