rmcp is vulnerable to Denial of Service (DoS)
75
High Risk
The Streamable HTTP server transport in crates/rmcp/src/transport/streamable_http_server/tower.rs allocates a session via create_session before it validates the request body in handle_post. An unauthenticated remote attacker can send a well-formed JSON-RPC POST that is not an InitializeRequest, which triggers an early return without calling close_session, permanently leaking one LocalSessionHandle entry per request from the in-memory session table. Sustained requests grow memory without bound and eventually exhaust the server, causing denial of service. The fix moves request validation before session creation so non-initialize requests are rejected without allocating session state.
You are affected if you are using a version that falls within the vulnerable range and your application runs the rmcp Streamable HTTP server transport.
rmcp is vulnerable to Denial of Service (DoS) in versions 0.2.0 - 1.8.0.
Upgrade the rmcp library to the patch version.
Connect your repositories to instantly see whether vulnerable or malicious packages exist in your codebase.
Free. No credit card required.

SOC 2Compliant
ISO 27001Compliant