CVE-2026-7212: edvardlindelof notes-mcp Path Traversal Vulnerability
The National Vulnerability Database has disclosed CVE-2026-7212, a high-severity path traversal vulnerability (CVSS 7.3) affecting edvardlindelof notes-mcp up to version 0.1.4. This flaw resides in the notes_mcp.py file, where improper handling of the root_dir/path argument allows for remote path traversal. Attackers can exploit this to access or manipulate files outside the intended directory structure.
The vulnerability is remotely exploitable, and an exploit has already been publicly disclosed. This significantly raises the risk profile, as it lowers the barrier for attackers to leverage the flaw. The project maintainers were notified via an issue report but have not yet responded, leaving affected users exposed.
This isn’t just theoretical. Path traversal is a classic, high-impact vulnerability. It can lead to sensitive data exposure, arbitrary file writes, or even remote code execution if combined with other weaknesses. Given the public exploit, defenders should assume active exploitation is a real possibility.
What This Means For You
- If your organization uses edvardlindelof notes-mcp, especially versions up to 0.1.4, you are immediately exposed to remote path traversal. Isolate or discontinue use of this application until a patch is released. Audit any systems where this software is deployed for unauthorized file access or modification.
Related ATT&CK Techniques
🛡️ Detection Rules
3 rules · 6 SIEM formats3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.
CVE-2026-7212: notes-mcp Path Traversal Attempt
title: CVE-2026-7212: notes-mcp Path Traversal Attempt
id: scw-2026-04-28-ai-1
status: experimental
level: high
description: |
Detects attempts to exploit the CVE-2026-7212 vulnerability in edvardlindelof notes-mcp by looking for path traversal sequences ('../') in the URI or query parameters. This indicates an attacker is trying to access files outside the intended directory.
author: SCW Feed Engine (AI-generated)
date: 2026-04-28
references:
- https://shimiscyberworld.com/posts/nvd-CVE-2026-7212/
tags:
- attack.initial_access
- attack.t1190
logsource:
category: webserver
detection:
selection:
cs-uri|contains:
- '../'
cs-uri-query|contains:
- '../'
condition: selection
falsepositives:
- Legitimate administrative activity
Source: Shimi's Cyber World · License & reuse
Indicators of Compromise
| ID | Type | Indicator |
|---|---|---|
| CVE-2026-7212 | Path Traversal | edvardlindelof notes-mcp up to version 0.1.4 |
| CVE-2026-7212 | Path Traversal | notes_mcp.py file |
| CVE-2026-7212 | Path Traversal | manipulation of argument root_dir/path |
Written by SCW Vulnerability Desk
Source & Attribution
| Source Platform | NVD |
| Channel | National Vulnerability Database |
| Published | April 28, 2026 at 05:16 UTC |
This content was AI-rewritten and enriched by Shimi's Cyber World based on the original source. All intellectual property rights remain with the original author.
Believe this infringes your rights? Submit a takedown request.
Related coverage
CVE-2026-7218: Totolink N300RT Buffer Overflow Exploited Remotely
CVE-2026-7218 — A vulnerability was detected in Totolink N300RT 3.4.0-B20250430. The impacted element is the function is_cmd_string_valid of the file /boafrm/formWsc of the component libapmib.so....
CVE-2026-7217 — Deepractice PromptX Path Traversal
CVE-2026-7217 — A security vulnerability has been detected in Deepractice PromptX up to 2.4.0. The affected element is the function read_docx/read_xlsx/read_pptx/list_xlsx_sheets/read_pdf of the file packages/mcp-office/src/index.ts...
CVE-2026-7216: donchelo processing-claude-mcp-bridge Path Traversal
CVE-2026-7216 — A weakness has been identified in donchelo processing-claude-mcp-bridge up to e017b20a4b592a45531a6392f494007f04e661bd. Impacted is an unknown function of the file processing_server.py of the component...