Lucene search
K

6 matches found

NVD
NVD
added 2026/04/26 1:16 p.m.9 views

CVE-2026-7039

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

8.5CVSS0.00653EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/26 12:30 p.m.36 views

CVE-2026-7039 tufantunc ssh-mcp index.ts shell.write command injection

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

8.5CVSS0.00653EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/26 12:30 p.m.3 views

CVE-2026-7039

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

8.5CVSS7AI score0.00653EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/26 12:30 p.m.15 views

CVE-2026-7039

The CVE-2026-7039 issue affects tufantunc ssh-mcp up to version 1.5.0. The vulnerability is tied to the function shell.write in src/index.ts, where manipulation of the Description argument enables command injection. The exploit requires local access. Public disclosure exists and the vendor has no...

8.5CVSS7AI score0.00653EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/26 12:0 p.m.3 views

CVE-2026-7038

A weakness has been identified in tufantunc ssh-mcp up to 1.5.0. Impacted is an unknown function of the file src/index.ts of the component Command Line Handler. This manipulation causes insufficiently protected credentials. The attack is restricted to local execution. The exploit has been made...

4.8CVSS5AI score0.00138EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/26 12:0 a.m.12 views

PT-2026-35222

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed...

8.5CVSS5.1AI score0.00653EPSS
Exploits0References6
Rows per page
Query Builder