GHSA-6xpm-ggf7-wc3p
Suggest an improvement- Source
- https://github.com/advisories/GHSA-6xpm-ggf7-wc3p
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/07/GHSA-6xpm-ggf7-wc3p/GHSA-6xpm-ggf7-wc3p.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-6xpm-ggf7-wc3p
- Aliases
- Published
- 2025-07-09T15:30:44Z
- Modified
- 2025-07-09T19:42:17.822019Z
- Severity
-
- 9.6 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- mcp-remote exposed to OS command injection via untrusted MCP server connections
- Details
-
mcp-remote is exposed to OS command injection when connecting to untrusted MCP servers due to crafted input from the authorization_endpoint response URL
- Database specific
{ "github_reviewed": true, "cwe_ids": [ "CWE-78" ], "severity": "CRITICAL", "github_reviewed_at": "2025-07-09T18:08:44Z", "nvd_published_at": "2025-07-09T13:15:24Z" }- References
-
- https://nvd.nist.gov/vuln/detail/CVE-2025-6514
- https://github.com/geelen/mcp-remote/commit/607b226a356cb61a239ffaba2fb3db1c9dea4bac
- https://github.com/geelen/mcp-remote
- https://jfrog.com/blog/2025-6514-critical-mcp-remote-rce-vulnerability
- https://research.jfrog.com/vulnerabilities/mcp-remote-command-injection-rce-jfsa-2025-001290844
Affected packages
npm / mcp-remote
Package
- Name
- mcp-remote
- View open source insights on deps.dev
- Purl
- pkg:npm/mcp-remote