CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

RedhatCVE•added 2026/02/07 7:22 a.m.•3 views

CVE-2026-1977

A security vulnerability has been detected in isaacwasserman mcp-vegalite-server up to 16aefed598b8cd897b78e99b907f6e2984572c61. Affected by this vulnerability is the function eval of the component visualizedata. Such manipulation of the argument vegalitespecification leads to code injection. The...

6.5CVSS6.1AI score0.00065EPSS

Exploits0References1

NVD•added 2026/02/06 4:15 a.m.•3 views

CVE-2026-1977

6.5CVSS0.00065EPSS

Exploits0References5

CVE•added 2026/02/06 3:32 a.m.•6 views

CVE-2026-1977

The CVE-2026-1977 entry concerns isaacwasserman mcp-vegalite-server. The vulnerability affects the eval usage in the visualize_data component, where manipulating the vegalite_specification argument can cause code injection. A remote attacker could exploit this, and public PoC details are noted. T...

6.5CVSS6.2AI score0.00065EPSS

Exploits0References5

Cvelist•added 2026/02/06 3:32 a.m.•28 views

CVE-2026-1977 isaacwasserman mcp-vegalite-server visualize_data eval code injection

6.5CVSS0.00065EPSS

Exploits0References5

Vulnrichment•added 2026/02/06 3:32 a.m.•1 views

CVE-2026-1977 isaacwasserman mcp-vegalite-server visualize_data eval code injection

6.5CVSS5.1AI score0.00065EPSS

Exploits0References5

Positive Technologies•added 2026/02/06 12:0 a.m.•4 views

PT-2026-6671

Name of the Vulnerable Software and Affected Versions isaacwasserman mcp-vegalite-server versions prior to 16aefed598b8cd897b78e99b907f6e2984572c61 Description A security issue exists in the eval function of the visualize data component. Manipulation of the vegalite specification argument can lea...

6.5CVSS5.3AI score0.00065EPSS

Exploits0References8