CVE-2026-7066 | choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036 server.py exec_openstack os command injection

A vulnerability categorized as critical has been discovered in choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036. The affected element is the function exec_openstack of the file server.py. The manipulation results in os command injection.

This vulnerability is known as CVE-2026-7066. It is possible to launch the attack remotely. Furthermore, an exploit is available.

This product takes the approach of rolling releases to provide continious delivery. Therefore, version details for affected and updated releases are not available.

The project was informed of the problem early through an issue report but has not responded yet.

CVE-2026-7066 | choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036 server.py exec_openstack os command injection

Post correlati

CVE-2025-41374 | TESI Gandia Integra Total prior 4.4.2236.1 hislistadoacciones.php idestudio sql injection

CVE-2023-49622 | Kashipara Group Billing Software 1.0 material_bill.php itemnameid sql injection

CVE-2025-51735 | HCL Unica 12.0.0 csv injection

CVE-2024-50244 | Linux Kernel up to 5.15.170/6.1.115/6.6.59/6.11.6 ntfs3 ni_clear uninitialized pointer