CVE-2026-48989
Windows-MCP: HTTP transports expose unauthenticated PowerShell control with wildcard CORS
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Windows-MCP is an open-source project that integrates AI agents with Windows. In versions prior to 0.7.5, certain HTTP modes exposed the MCP control plane without authentication while enabling wildcard CORS (allow_origins=*, allow_methods=*, allow_headers=*). Because the same server also exposed a PowerShell tool that executes caller-controlled commands as the Windows user running Windows-MCP, attackers could reach the control plane from arbitrary origins or non-browser clients and achieve arbitrary PowerShell execution. This issue was fixed in version 0.7.5.
| CWE | CWE-306 |
| Vendor | cursortouch |
| Product | windows-mcp |
| Published | Jun 17, 2026 |
Stay Ahead of the Next One
Get instant alerts for cursortouch windows-mcp
Be the first to know when new unknown vulnerabilities affecting cursortouch windows-mcp are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
CursorTouch / Windows-MCP
< 0.7.5