{"data":{"id":"5b22b3f3-d16f-423c-a353-e6edf1f74bc9","title":"CVE-2026-50287: AgenticMail gives AI agents real email addresses and phone numbers. Prior to version 0.9.27, @agenticmail/mcp exposes a ","summary":"AgenticMail, a tool that allows AI agents to access email and phone services, has a security flaw in versions before 0.9.27 where the /mcp endpoint (a communication interface) accepts requests without requiring authentication (verification of identity) when started in HTTP mode. This means a remote attacker could connect to the service and use its tools directly to access real email addresses and phone numbers.","solution":"This issue has been patched in version 0.9.27.","labels":["security"],"sourceUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-50287","publishedAt":"2026-06-12T20:16:46.940Z","cveId":"CVE-2026-50287","cweIds":["CWE-306"],"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["other"],"issueType":"vulnerability","affectedPackages":null,"affectedVendors":[],"affectedVendorsRaw":["AgenticMail","@agenticmail/mcp"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0.0006,"patchAvailable":null,"disclosureDate":"2026-06-12T20:16:46.940Z","capecIds":["CAPEC-115"],"crossRefCount":0,"attackSophistication":"trivial","impactType":["confidentiality","integrity"],"aiComponentTargeted":"agent","llmSpecific":false,"classifierConfidence":0.92,"researchCategory":null,"atlasIds":null}}