RubySec

Providing security resources for the Ruby community

GHSA-5p9g-j988-pcwv (mcp): Ruby SSE Session Poisoning

Ruby SSE Session Poisoning

Published: July 07, 2026

SECURITY IDENTIFIERS

GEM

mcp

PATCHED VERSIONS

>= 0.23.0

DESCRIPTION

Summary

Vulnerability: Missing Session Ownership Validation in the Ruby MCP SDK's Streamable and SSE HTTP transport implementation. Any attacker with a stolen session ID can execute tools with the victim's session. This is a silent attack - the victim's session is compromised and being used for unauthorized actions, but it is hard to know for the victim.

RELATED