CVE-2026-32247 — HIGH (8.1)

Q: How severe is CVE-2026-32247?

CVE-2026-32247 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2026-32247?

Check the references section above for vendor advisories and patch information. Affected products include: Getzep Graphiti.

Vulnerability Description

Graphiti is a framework for building and querying temporal context graphs for AI agents. Graphiti versions before 0.28.2 contained a Cypher injection vulnerability in shared search-filter construction for non-Kuzu backends. Attacker-controlled label values supplied through SearchFilters.node_labels were concatenated directly into Cypher label expressions without validation. In MCP deployments, this was exploitable not only through direct untrusted access to the Graphiti MCP server, but also through prompt injection against an LLM client that could be induced to call search_nodes with attacker-controlled entity_types values. The MCP server mapped entity_types to SearchFilters.node_labels, which then reached the vulnerable Cypher construction path. Affected backends included Neo4j, FalkorDB, and Neptune. Kuzu was not affected by the label-injection issue because it used parameterized label handling rather than string-interpolated Cypher labels. This issue was mitigated in 0.28.2.

CVSS Score

8.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Getzep	Graphiti	< 0.28.2

Related Weaknesses (CWE)

CWE-943

References

https://github.com/getzep/graphiti/commit/7d65d5e77e89a199a62d737634eaa26dbb04d0Patch
https://github.com/getzep/graphiti/pull/1312Issue TrackingPatch
https://github.com/getzep/graphiti/releases/tag/v0.28.2Release Notes
https://github.com/getzep/graphiti/security/advisories/GHSA-gg5m-55jj-8m5gVendor AdvisoryMitigation

FAQ

What is CVE-2026-32247?

CVE-2026-32247 is a vulnerability with a CVSS score of 8.1 (HIGH). Graphiti is a framework for building and querying temporal context graphs for AI agents. Graphiti versions before 0.28.2 contained a Cypher injection vulnerability in shared search-filter construction...

How severe is CVE-2026-32247?

CVE-2026-32247 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-32247?

Check the references section above for vendor advisories and patch information. Affected products include: Getzep Graphiti.