CVE-2026-7319 in execution-system-mcpИнформация

Сводка

по MITRE • 29.04.2026

A flaw has been found in elinsky execution-system-mcp 0.1.0. The impacted element is the function _get_context_file_path of the file src/execution_system_mcp/server.py of the component add_action Tool. This manipulation of the argument context causes path traversal. The attack can be initiated remotely. The exploit has been published and may be used.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Ответственный

VulDB

Раскрытие

29.04.2026

Модерация

принято

Вход

VDB-359972

CPE

готов

CWE

CWE-22 (Подтверждённый)

Эксплойт

Скачать

CVSS

7.3 (VulDB)

EPSS

0.00150

KEV

Нет

Деятельности

Очень низкий

Сектор

Education, Insurance, ...

Источники

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-7319
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-7319
CVE Details	https://www.cvedetails.com/cve/CVE-2026-7319/

◂ Предыдущий Обзор Далее ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!