Submit #792655: AstrBotDevs AstrBot 4.22.1 Arbitrary Command Executioninfo

TitleAstrBotDevs AstrBot 4.22.1 Arbitrary Command Execution
DescriptionAstrBot versions up to and including 4.22.1 allow authenticated dashboard users to add MCP (Model Context Protocol) server configurations via the /api/tools/mcp/add endpoint. The MCP server configuration includes a command field specifying the executable to launch and an args field for command-line arguments. These values are passed directly to subprocess execution without any validation or restriction, allowing an attacker with dashboard access to execute arbitrary system commands.
Source⚠️ https://github.com/AstrBotDevs/AstrBot/issues/7169
User
 Yu_Bao (UID 89348)
Submission03/30/2026 05:32 (13 days ago)
Moderation04/11/2026 10:50 (12 days later)
StatusAccepted
VulDB entry356978 [AstrBotDevs AstrBot up to 4.22.1 MCP Endpoint tools.py add_mcp_server command command injection]
Points20

PreviousOverviewNext

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!