CVE-2026-15138
Received Received - Intake

Path Traversal in tumf mcp-text-editor

Vulnerability report for CVE-2026-15138, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-09

Last updated on: 2026-07-09

Assigner: VulDB

Description

A security vulnerability has been detected in tumf mcp-text-editor up to 1.0.2. This issue affects the function _validate_file_path of the file mcp_text_editor/text_editor.py. Such manipulation of the argument file_path leads to path traversal. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The vendor closed the GitHub issue for this vulnerability without any explanation.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-09
Last Modified
2026-07-09
Generated
2026-07-09
AI Q&A
2026-07-09
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
tumf mcp-text-editor to 1.0.2 (inc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in the tumf mcp-text-editor up to version 1.0.2, specifically in the _validate_file_path function of the file mcp_text_editor/text_editor.py. The issue is a path traversal vulnerability caused by improper validation of the file_path argument. The validation only checks for a single ".." substring and does not properly confine directory access, allowing an attacker to manipulate file paths to access arbitrary files on the system.

The attack can be launched remotely, meaning an attacker does not need local access to exploit this vulnerability.

Impact Analysis

This vulnerability can allow an attacker to read or write arbitrary files on the system where the mcp-text-editor is running. This unauthorized file system access can lead to exposure of sensitive information, modification or deletion of critical files, and potentially further compromise of the affected system.

Detection Guidance

This vulnerability involves path traversal through manipulation of the file_path argument in the mcp-text-editor. Detection can focus on monitoring for unusual file path patterns containing directory traversal sequences such as ".." in requests or logs related to the mcp-text-editor.

You can check for suspicious usage by searching logs or monitoring network traffic for requests that include ".." or other path traversal patterns targeting the mcp-text-editor service.

Example commands to detect potential exploitation attempts include:

  • Using grep to find path traversal attempts in logs: grep -r '\.\./' /var/log/mcp-text-editor/
  • Using network monitoring tools like tcpdump or Wireshark to filter for suspicious HTTP requests containing "..": tcpdump -A -s 0 'tcp port 80 and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)' | grep '\.\./'
  • If the mcp-text-editor exposes an API or web interface, monitor access logs for requests with file_path parameters containing ".." sequences.
Mitigation Strategies

Immediate mitigation steps include restricting access to the mcp-text-editor service to trusted users or networks to reduce exposure.

Implement input validation or filtering on the file_path argument to prevent directory traversal sequences such as ".." from being processed.

If possible, apply file system permissions to limit the files and directories accessible by the mcp-text-editor process.

Monitor the GitHub repository and issue tracker for any official patches or updates addressing this vulnerability, as the vendor has not provided a fix yet.

Compliance Impact

The vulnerability allows arbitrary file read/write access through path traversal, potentially leading to unauthorized access to sensitive files.

Such unauthorized access could result in exposure or modification of personal or protected data, which may violate data protection regulations like GDPR or HIPAA that require strict controls on data confidentiality and integrity.

However, the provided information does not explicitly state the impact on compliance with these standards.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-15138. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart