A critical security vulnerability, CVE-2026-48710 (BadHost), exposes Python applications using Starlette versions prior to 1.0.1. The flaw occurs when developers use request.url in middleware to make security decisions about paths, potentially bypassing authentication, rate limiting, and other security controls across vulnerable applications that process user input.

Multiple ASGI servers including Daphne, Granian, Gunicorn, Hypercorn, Anycorn, and Uvicorn run at risk. The vulnerability extends to AI and LLM infrastructure like vLLM, LiteLLM, AI agent frameworks, MCP gateways, and custom APIs. MCP servers face heightened exposure due to mandated unauthenticated OAuth discovery endpoints in the specification, creating reliable exploitation paths.

Developers should scan codebases for request.url.path in middleware files and utilize tools from the X41 open-source repository. The vulnerability affects core infrastructure components that process untrusted input, creating a widespread security risk across the Python web ecosystem that requires immediate patching before exploitation occurs in production environments.