CVE-2026-31841 - Vulnerability Details - OpenCVE

Hyperterse is a tool-first MCP framework for building AI-ready backend surfaces from declarative config. Prior to v2.2.0, the search tool allows LLMs to search for tools using natural language. While returning results, Hyperterse also returned the raw SQL queries, exposing statements which were supposed to be executed under the hood, and protected from being displayed publicly. This issue has been fixed as of v2.2.0.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Exploitation none

Automatable yes

Technical Impact partial

No data.

No data.

No data.

No data.

References

Link	Providers
https://github.com/hyperterse/hyperterse/releases/tag/v2.2.0
https://github.com/hyperterse/hyperterse/security/advisories/GHSA-92gp-jfgx-9qpv

History

Thu, 12 Mar 2026 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 12 Mar 2026 17:15:00 +0000

Type	Values Removed	Values Added
Description		Hyperterse is a tool-first MCP framework for building AI-ready backend surfaces from declarative config. Prior to v2.2.0, the search tool allows LLMs to search for tools using natural language. While returning results, Hyperterse also returned the raw SQL queries, exposing statements which were supposed to be executed under the hood, and protected from being displayed publicly. This issue has been fixed as of v2.2.0.
Title		Raw exposure of database statements in Hyperterse MCP search tool
Weaknesses		CWE-433
References		https://github.com/hyperterse/hyperterse/releases/tag/v2.2.0 https://github.com/hyperterse/hyperterse/security/advisories/GHSA-92gp-jfgx-9qpv
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N'}`

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2026-03-12T17:03:32.818Z

Updated: 2026-03-12T17:50:15.398Z

Reserved: 2026-03-09T17:41:56.078Z

Link: CVE-2026-31841

Vulnrichment

Updated: 2026-03-12T17:50:08.930Z

NVD

Status : Received

Published: 2026-03-12T17:16:51.050

Modified: 2026-03-12T17:16:51.050

Link: CVE-2026-31841

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-31841", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-09T17:41:56.078Z", "datePublished": "2026-03-12T17:03:32.818Z", "dateUpdated": "2026-03-12T17:50:15.398Z"}, "containers": {"cna": {"title": "Raw exposure of database statements in Hyperterse MCP search tool", "problemTypes": [{"descriptions": [{"cweId": "CWE-433", "lang": "en", "description": "CWE-433: Unparsed Raw Web Content Delivery", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/hyperterse/hyperterse/security/advisories/GHSA-92gp-jfgx-9qpv", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/hyperterse/hyperterse/security/advisories/GHSA-92gp-jfgx-9qpv"}, {"name": "https://github.com/hyperterse/hyperterse/releases/tag/v2.2.0", "tags": ["x_refsource_MISC"], "url": "https://github.com/hyperterse/hyperterse/releases/tag/v2.2.0"}], "affected": [{"vendor": "hyperterse", "product": "hyperterse", "versions": [{"version": ">= 2.0.0, < 2.2.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-12T17:03:32.818Z"}, "descriptions": [{"lang": "en", "value": "Hyperterse is a tool-first MCP framework for building AI-ready backend surfaces from declarative config. Prior to v2.2.0, the search tool allows LLMs to search for tools using natural language. While returning results, Hyperterse also returned the raw SQL queries, exposing statements which were supposed to be executed under the hood, and protected from being displayed publicly. This issue has been fixed as of v2.2.0."}], "source": {"advisory": "GHSA-92gp-jfgx-9qpv", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-12T17:50:05.033697Z", "id": "CVE-2026-31841", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-12T17:50:15.398Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-31841", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-12T17:50:05.033697Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-12T17:50:08.930Z"}}], "cna": {"title": "Raw exposure of database statements in Hyperterse MCP search tool", "source": {"advisory": "GHSA-92gp-jfgx-9qpv", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "hyperterse", "product": "hyperterse", "versions": [{"status": "affected", "version": ">= 2.0.0, < 2.2.0"}]}], "references": [{"url": "https://github.com/hyperterse/hyperterse/security/advisories/GHSA-92gp-jfgx-9qpv", "name": "https://github.com/hyperterse/hyperterse/security/advisories/GHSA-92gp-jfgx-9qpv", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/hyperterse/hyperterse/releases/tag/v2.2.0", "name": "https://github.com/hyperterse/hyperterse/releases/tag/v2.2.0", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Hyperterse is a tool-first MCP framework for building AI-ready backend surfaces from declarative config. Prior to v2.2.0, the search tool allows LLMs to search for tools using natural language. While returning results, Hyperterse also returned the raw SQL queries, exposing statements which were supposed to be executed under the hood, and protected from being displayed publicly. This issue has been fixed as of v2.2.0."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-433", "description": "CWE-433: Unparsed Raw Web Content Delivery"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-12T17:03:32.818Z"}}}, "cveMetadata": {"cveId": "CVE-2026-31841", "state": "PUBLISHED", "dateUpdated": "2026-03-12T17:50:15.398Z", "dateReserved": "2026-03-09T17:41:56.078Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-12T17:03:32.818Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}