CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

RedhatCVE•added 2026/04/29 8:48 p.m.•2 views

CVE-2026-6942

radare2-mcp version 1.6.0 and earlier contains an os command injection vulnerability that allows remote attackers to execute arbitrary commands by bypassing the command filter through shell metacharacters in user-controlled input passed to r2cmdstr. Attackers can inject shell metacharacters throu...

9.8CVSS6.8AI score0.00208EPSS

Exploits1References1

EUVD•added 2026/04/23 9:31 p.m.•3 views

EUVD-2026-25314

9.8CVSS6.8AI score0.00208EPSS

Exploits1References4

NVD•added 2026/04/23 9:16 p.m.•3 views

CVE-2026-6942

9.8CVSS0.00208EPSS

Exploits1References3

CVE•added 2026/04/23 8:58 p.m.•4 views

CVE-2026-6942

Radare2-MCP

9.8CVSS6.8AI score0.00208EPSS

Exploits1References3Affected Software1

Cvelist•added 2026/04/23 8:58 p.m.•36 views

CVE-2026-6942 radare2-mcp <=1.6.0 OS Command Injection via Shell Metacharacter Bypass

9.8CVSS0.00208EPSS

Exploits1References3

Vulnrichment•added 2026/04/23 8:58 p.m.•2 views

CVE-2026-6942 radare2-mcp <=1.6.0 OS Command Injection via Shell Metacharacter Bypass

9.8CVSS6.8AI score0.00208EPSS

Exploits1References3

ATTACKERKB•added 2026/04/23 8:58 p.m.•1 views

CVE-2026-6942

9.8CVSS6.8AI score0.00208EPSS

Exploits1References4

Positive Technologies•added 2026/04/23 12:0 a.m.•3 views

PT-2026-34753

Name of the Vulnerable Software and Affected Versions radare2-mcp versions 1.6.0 and earlier Description An OS command injection flaw allows remote, unauthenticated attackers to execute arbitrary commands on the host system. This is achieved by bypassing the command filter using shell...

9.8CVSS5.7AI score0.00208EPSS

Exploits1References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by