Отправить #798616: AgentDeskAI browser-tools-mcp 1.2.0 OS Command InjectionИнформация

НазваниеAgentDeskAI browser-tools-mcp 1.2.0 OS Command Injection
ОписаниеAn input-handling flaw in browser-tools-mcp allows attacker-controlled path data to be interpolated into a shell command that executes AppleScript via osascript. The server accepts untrusted data from HTTP/WebSocket channels, builds an AppleScript string containing attacker-controlled file path content, then executes: exec(\osascript -e '${appleScript}'`)` without shell-safe escaping. On macOS deployments where autoPaste is enabled and screenshot flow is reachable, this can lead to arbitrary OS command execution.
Источник⚠️ https://github.com/AgentDeskAI/browser-tools-mcp/issues/232
Пользователь
 MidA (UID 96794)
Представление07.04.2026 10:47 (21 дни назад)
Модерация26.04.2026 09:10 (19 days later)
Статуспринято
Запись VulDB359639 [AgentDeskAI browser-tools-mcp до 1.2.0 browser-connector.ts эскалация привилегий]
Баллы20

ПредыдущийОбзорДалее

Do you want to use VulDB in your project?

Use the official API to access entries easily!