CVE-2025-61492
Published
CVSS v3
10
CRITICAL
CVSS v2
N/A
Affected
2
PROJECTS
Description
A command injection vulnerability in the execute_command function of terminal-controller-mcp 0.1.7 allows attackers to execute arbitrary commands via a crafted input.
A Model Context Protocol (MCP) server that enables secure terminal command execution, directory navigation, and file system operations through a standardized interface.
GitHub