A vulnerability classified as critical has been found in j3k0 mcp-google-workspace up to 831790e7d5c2663325733d9f5579cc339a267c4c . This issue affects the function saveToDisk of the file src/tools/gmail.ts of the component MCP Gmail Tool . Performing a manipulation results in improper access controls. This vulnerability is cataloged as CVE-2026-10277 . It is possible to initiate the attack remotely. Furthermore, there is an exploit available. This product is using a rolling release to provide co