Lucene search
K

6 matches found

NVD
NVD
added 2026/03/16 2:20 p.m.3 views

CVE-2026-4192

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS0.01301EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.7 views

Quip MCP Server 命令注入漏洞

Quip MCP Server is a documentation-based server developed by AvinashBole. Version 1.0.0 of Quip MCP Server has a command injection vulnerability, which stems from incorrect operations on the function setupToolHandlers in the file src/index.ts, potentially leading to command injection...

6.5CVSS6.6AI score0.01301EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/03/15 8:32 p.m.39 views

CVE-2026-4192 AvinashBole quip-mcp-server index.ts setupToolHandlers command injection

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS0.01301EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/03/15 8:32 p.m.2 views

CVE-2026-4192 AvinashBole quip-mcp-server index.ts setupToolHandlers command injection

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS6.2AI score0.01301EPSS
Exploits0References6
CVE
CVE
added 2026/03/15 8:32 p.m.14 views

CVE-2026-4192

The CVE-2026-4192 entry concerns AvinashBole quip-mcp-server 1.0.0, where the function setupToolHandlers in src/index.ts is vulnerable to command injection. The vulnerability is described as exploitable remotely, with the exploit publicly disclosed and the project reportedly not responding to the...

6.5CVSS6.2AI score0.01301EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/03/15 12:0 a.m.2 views

PT-2026-25567

A vulnerability has been found in AvinashBole quip-mcp-server 1.0.0. Affected by this vulnerability is the function setupToolHandlers of the file src/index.ts. Such manipulation leads to command injection. The attack may be performed from remote. The exploit has been disclosed to the public and m...

6.5CVSS5.4AI score0.01301EPSS
Exploits0References6
Rows per page
Query Builder