Figma MCP Server Product Security Update Advisory (CVE-2025-53967)

Oct 15 2025

Overview

We have released a security update to address a vulnerability in our Figma MCP Server product. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2025-53967

Figma-developer-mcp Version: 0.6.2 and earlier

Resolved Vulnerabilities

Command injection vulnerability in MCP Server in Figma-Context-MCP (CVE-2025-53967)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2025-53967

Figma-developer-mcp version: 0.6.2 and later

References

[1] figma-developer-mcp vulnerable to command injection in get_figma_data tool
https://github.com/advisories/GHSA-gxw4-4fc5-9gr5

Figma MCP Server Product Security Update Advisory (CVE-2025-53967)

NVIDIA Product Security Update Advisory

MS Family October 2025 Routine Security Update Advisory

Tags:

NVIDIA Product Security Update Advisory

MS Family October 2025 Routine Security Update Advisory