Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/24 9:15 a.m.9 views

CVE-2026-0758

mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the...

7.8CVSS6.2AI score0.00658EPSS
Exploits0References1
Snyk
Snyk
added 2026/01/23 5:9 a.m.6 views

Command Injection

Overview mcp-server-siri-shortcuts is a MCP server that provides access to Siri shortcuts Affected versions of this package are vulnerable to Command Injection via the shortcutName parameter. An attacker can execute arbitrary code with elevated privileges by supplying crafted input that is used i...

8.5CVSS6.2AI score0.00658EPSS
Exploits0References2
NVD
NVD
added 2026/01/23 4:16 a.m.6 views

CVE-2026-0758

mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the...

7.8CVSS0.00658EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 3:28 a.m.19 views

CVE-2026-0758

Summary of CVE-2026-0758 (mcp-server-siri-shortcuts) : A local privilege-escalation command-injection flaw in the shortcutName parameter of mcp-server-siri-shortcuts. The issue arises from insufficient validation of a user-supplied string before it is used in a system call, allowing a low-privile...

7.8CVSS6.2AI score0.00658EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.12 views

Siri Shortcuts MCP Server: Operating System Command Injection Vulnerability

Siri Shortcuts MCP Server is a tool developed by David as an integrated voice assistant and a context-based protocol server for large models. The Siri Shortcuts MCP Server has a vulnerability related to operating system command injection, which stems from insufficient validation of the shortcutNa...

7.8CVSS7.3AI score0.00658EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2026/01/09 12:0 a.m.5 views

(0Day) mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the...

7.8CVSS7.4AI score0.00658EPSS
Exploits0
Rows per page
Query Builder