CVE-2025-63604 | baryhuang mcp-server-aws-resources-python up to 0.1.0 Environment Variable exec code injection

Inserito da Angelo Barbosa | Nov 18, 2025 | CVE

A vulnerability identified as critical has been detected in baryhuang mcp-server-aws-resources-python up to 0.1.0. This impacts the function exec of the component Environment Variable Handler. This manipulation causes code injection.

This vulnerability appears as CVE-2025-63604. The attack may be initiated remotely. There is no available exploit.

CVE-2025-63604 | baryhuang mcp-server-aws-resources-python up to 0.1.0 Environment Variable exec code injection

Post correlati

CVE-2025-7207 | mruby up to 3.4.0-rc2 nregs codegen.c scope_new heap-based overflow (Issue 6509)

CVE-2024-5200 | Postie Plugin up to 1.9.70 on WordPress Setting cross site scripting

CVE-2024-1767 | Blocksy Plugin up to 2.0.26 on WordPress cross site scripting

CVE-2021-20556 | IBM Cognos Controller 10.4.1/10.4.2/11.0.0 observable response discrepancy (XFDB-199181)