CVE-2025-6514 | mcp-remote up to 0.1.15 authorization_endpoint os command injection (jfsa-2025-001290844)

Inserito da Angelo Barbosa | Lug 9, 2025 | CVE

A vulnerability has been found in mcp-remote up to 0.1.15 and classified as critical. Affected by this vulnerability is the function authorization_endpoint. The manipulation leads to os command injection.

This vulnerability is known as CVE-2025-6514. The attack can be launched remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2025-6514 | mcp-remote up to 0.1.15 authorization_endpoint os command injection (jfsa-2025-001290844)

Post correlati

CVE-2024-6134 | WP-FeedStats wp-cart-for-digital-products Plugin up to 8.5.5 on WordPress cross site scripting

CVE-2024-3129 | SourceCodester Image Accordion Gallery App 1.0 /endpoint/add-image.php image_name unrestricted upload

CVE-2025-4051 | Google Chrome up to 135.0.7049.95 DevTools input validation

CVE-2024-56003 | David Cramer Caldera SMTP Mailer Plugin up to 1.0.1 on WordPress authorization