{"id":"PYSEC-2026-2000","summary":"Universal Tool Calling Protocol (UTCP) client library for Python vulnerable to Trust Boundary Violation through Manual JSON specification","details":"The vulnerability arises when a client fetches a tools’ JSON specification, known as a Manual, from a remote Manual Endpoint. While a provider may initially serve a benign manual (e.g., one defining an HTTP tool call), earning the clients’ trust, a malicious provider can later change the manual to exploit the client.","aliases":["CVE-2025-14542","GHSA-75mj-4g74-9rg2"],"modified":"2026-07-07T17:47:54.161359607Z","published":"2026-07-07T16:03:12.815097Z","references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2025-14542"},{"type":"WEB","url":"https://github.com/universal-tool-calling-protocol/python-utcp/commit/2dc9c02df72cad3770c934959325ec344b441444"},{"type":"WEB","url":"https://github.com/universal-tool-calling-protocol/python-utcp"},{"type":"WEB","url":"https://research.jfrog.com/vulnerabilities/python-utcp-untrusted-manual-command-execution-jfsa-2025-001648329"},{"type":"PACKAGE","url":"https://pypi.org/project/utcp"},{"type":"ADVISORY","url":"https://github.com/advisories/GHSA-75mj-4g74-9rg2"}],"affected":[{"package":{"name":"utcp","ecosystem":"PyPI","purl":"pkg:pypi/utcp"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"1.1.0"}]}],"versions":["0.1.0","0.1.2","0.1.3","0.1.4","0.1.5","0.1.6","0.1.7","0.1.8","0.2.0","0.2.1","0.2.2","0.2.3","1.0.0","1.0.1","1.0.2","1.0.3","1.0.4"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/utcp/PYSEC-2026-2000.yaml"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H"}]}