Severity:
HIGH RISK
(8.3)
Unauthenticated Flask API (CWE-306) in Serena MCP Tool
CVE-2026-49471
Published:
Status:
Undergoing Analysis
Summary
Affected Context
Exploit Preconditions
Why This Happens
Potential Impact
General Mitigation Guidance
How Teams Detect Issues Like This
Frequently Asked Questions
Source
NDV








