PyPI: mcp

CVE-2025-53365

Safety vulnerability ID: SFTY-20250704-09736

Safety legacy ID: pyup.io-77975

The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing the server to crash and requiring a restart to restore service. Impact may vary depending on the deployment conditions, and the presence of infrastructure-level resilience measures. Version 1.10.0 contains a patch for the issue.

PythonPyPINVDNVDGitHubGHSA
Created at: May 22, 2026Updated at: May 22, 2026

Overview

MCP Python SDK has Unhandled Exception in Streamable HTTP Transport, Leading to Denial of Service

Advisory

The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol (MCP). Prior to version 1.10.0, if a client deliberately triggers an exception after establishing a streamable HTTP session, this can lead to an uncaught ClosedResourceError on the server side, causing the server to crash and requiring a restart to restore service. Impact may vary depending on the deployment conditions, and the presence of infrastructure-level resilience measures. Version 1.10.0 contains a patch for the issue.

Affected Package

Affecting mcp package, versions
<1.10.0

Also affects

---

How to Fix

Upgrade
mcp
to
1.10.0
or higher.

Mitigation and Workarounds

---

Vulnerable Functions

Functions linked to known vulnerabilities.

Vulnerable function data is available for Enterprise customers

Book a call with us to see Safety in action.

References

Safety

Verified by Safety

Our Cybersecurity Intelligence Team reviewed this vulnerability. We combine public data with our own research to find issues not yet reported to public sources.

Learn more