CVE-2026-7039: Command Injection in tufantunc ssh-mcp
CVE-2026-7039 is a high-severity command injection vulnerability in tufantunc ssh-mcp versions up to 1. 5. 0. The flaw exists in the shell. write function of src/index. ts, where manipulation of the Description argument allows local attackers to execute arbitrary commands. Exploit code has been publicly disclosed, but the vendor has not yet responded or issued a fix. The attack requires local access and does not involve user interaction. No official patch or remediation guidance is currently available.
AI Analysis
Technical Summary
This vulnerability in tufantunc ssh-mcp (up to version 1.5.0) arises from improper handling of input in the shell.write function within src/index.ts. Specifically, the Description argument can be manipulated to perform command injection, classified under CWE-77 and CWE-74. The attack vector is local with low attack complexity and requires low privileges but no user interaction. The vulnerability has a CVSS 4.0 score of 8.5, indicating high impact on confidentiality, integrity, and availability. Although publicly disclosed, no vendor fix or advisory has been published to date.
Potential Impact
Successful exploitation allows a local attacker to execute arbitrary commands on the affected system, potentially leading to full compromise of confidentiality, integrity, and availability of the system running ssh-mcp. Since the attack requires local access, remote exploitation is not possible without prior access. The public disclosure of the exploit increases the risk of exploitation in unpatched environments.
Mitigation Recommendations
No official patch or remediation is currently available from the vendor. Users should restrict local access to trusted personnel only and monitor for suspicious activity related to ssh-mcp usage. Stay alert for vendor advisories or updates that may provide a fix. Patch status is not yet confirmed — check the vendor advisory for current remediation guidance.
CVE-2026-7039: Command Injection in tufantunc ssh-mcp
Description
CVE-2026-7039 is a high-severity command injection vulnerability in tufantunc ssh-mcp versions up to 1. 5. 0. The flaw exists in the shell. write function of src/index. ts, where manipulation of the Description argument allows local attackers to execute arbitrary commands. Exploit code has been publicly disclosed, but the vendor has not yet responded or issued a fix. The attack requires local access and does not involve user interaction. No official patch or remediation guidance is currently available.
CVSS v4.0
Score 8.5high
Affected software
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability in tufantunc ssh-mcp (up to version 1.5.0) arises from improper handling of input in the shell.write function within src/index.ts. Specifically, the Description argument can be manipulated to perform command injection, classified under CWE-77 and CWE-74. The attack vector is local with low attack complexity and requires low privileges but no user interaction. The vulnerability has a CVSS 4.0 score of 8.5, indicating high impact on confidentiality, integrity, and availability. Although publicly disclosed, no vendor fix or advisory has been published to date.
Potential Impact
Successful exploitation allows a local attacker to execute arbitrary commands on the affected system, potentially leading to full compromise of confidentiality, integrity, and availability of the system running ssh-mcp. Since the attack requires local access, remote exploitation is not possible without prior access. The public disclosure of the exploit increases the risk of exploitation in unpatched environments.
Mitigation Recommendations
No official patch or remediation is currently available from the vendor. Users should restrict local access to trusted personnel only and monitor for suspicious activity related to ssh-mcp usage. Stay alert for vendor advisories or updates that may provide a fix. Patch status is not yet confirmed — check the vendor advisory for current remediation guidance.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-04-25T15:51:48.832Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
- Gcve Source
- db.gcve.eu
Threat ID: 69ee0dbc87115cfb680961f4
Added to database: 4/26/2026, 1:06:04 PM
Last enriched: 5/4/2026, 7:24:01 AM
Last updated: 6/10/2026, 9:03:50 PM
Views: 71
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.