إرسال #798616: AgentDeskAI browser-tools-mcp 1.2.0 OS Command Injectionالمعلومات

عنوان	AgentDeskAI browser-tools-mcp 1.2.0 OS Command Injection
الوصف	An input-handling flaw in browser-tools-mcp allows attacker-controlled path data to be interpolated into a shell command that executes AppleScript via osascript. The server accepts untrusted data from HTTP/WebSocket channels, builds an AppleScript string containing attacker-controlled file path content, then executes: exec(\osascript -e '${appleScript}'`)` without shell-safe escaping. On macOS deployments where autoPaste is enabled and screenshot flow is reachable, this can lead to arbitrary OS command execution.
المصدر	⚠️ https://github.com/AgentDeskAI/browser-tools-mcp/issues/232
المستخدم	MidA (UID 96794)
ارسال	07/04/2026 10:47 AM (20 أيام منذ)
الاعتدال	26/04/2026 09:10 AM (19 days later)
الحالة	تمت الموافقة
إدخال VulDB	359639 [AgentDeskAI browser-tools-mcp حتى 1.2.0 browser-connector.ts تجاوز الصلاحيات]
النقاط	20

Do you know our Splunk app?

Download it now for free!