4 matches found
CVE-2026-7416
A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function buildproject/runtests of the file src/index.ts of the component MCP Interface. The manipulation of the argument Request results in os command injection. The attack may be launched remotely. The exploit...
EUVD-2026-26293
A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function buildproject/runtests of the file src/index.ts of the component MCP Interface. The manipulation of the argument Request results in os command injection. The attack may be launched remotely. The exploit...
CVE-2026-7416
Summary: CVE-2026-7416 affects PolarVista xcode-mcp-server 1.0.0, specifically the MCP Interface’s build_project/run_tests in src/index.ts. The vulnerability arises from manipulating the Request argument, enabling an OS command injection. The advisory notes remote feasibility and public disclosur...
Xcode MCP Server 命令注入漏洞
Xcode MCP Server is an Xcode-integrated context-based protocol server developed by R. Huijts. Version 1.0.0 of Xcode MCP Server contains a command injection vulnerability. This vulnerability arises from the Request operation in the buildproject/runtests function within the src/index.ts file, whic...