CVE-2026-3484 | PhialsBasement nmap-mcp-server up to bee6d23547d57ae02460022f7c78ac0893092e38 Nmap CLI Command src/index.ts child_process.exec command injection

A vulnerability classified as critical was found in PhialsBasement nmap-mcp-server up to bee6d23547d57ae02460022f7c78ac0893092e38. Affected by this issue is the function child_process.exec of the file src/index.ts of the component Nmap CLI Command Handler. The manipulation results in command injection.

This vulnerability was named CVE-2026-3484. The attack may be performed from remote. There is no available exploit.

This product utilizes a rolling release system for continuous delivery, and as such, version information for affected or updated releases is not disclosed. It is best practice to apply a patch to resolve this issue.

CVE-2026-3484 | PhialsBasement nmap-mcp-server up to bee6d23547d57ae02460022f7c78ac0893092e38 Nmap CLI Command src/index.ts child_process.exec command injection

Post correlati

CVE-2024-47129 | goTenna Pro Series up to 1.6.1 Length observable response discrepancy (icsa-24-270-04)

CVE-2025-53499 | AbuseFilter Extension up to 1.39.12/1.42.6/1.43.1 on Mediawiki authorization

CVE-2024-13327 | Musicbox Plugin up to 2.0.3 on WordPress cross site scripting

CVE-2024-7454 | SourceCodester Clinics Patient Management System 1.0 patients.php patient_name sql injection