CVE-2026-10279 - Vulnerability Details

- hiraishikentaro wezterm-mcp switch_pane/write_to_specific_pane wezterm_executor.ts os command injection

Description

A vulnerability was identified in hiraishikentaro wezterm-mcp 0.1.0. The affected element is an unknown function of the file src/wezterm_executor.ts of the component switch_pane/write_to_specific_pane. The manipulation of the argument request.params.arguments.pane_id leads to os command injection. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.

Published: 2026-06-01

Score: 5.3 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

A function in the script src/wezterm_executor.ts of the switch_pane/write_to_specific_pane component accepts an argument from request.params.arguments.pane_id that is used directly in an operating‑system command call. Manipulation of this parameter allows an attacker to inject arbitrary commands, elevating the local operation to remote command execution. The vulnerability is exploitable over the network and a proof‑of‑concept exists in the public issue tracker.

Affected Systems

The affected product is wezterm-mcp version 0.1.0, developed by hiraishikentaro. The vulnerability resides in the switch_pane/write_to_specific_pane interface of the code repository linked in the advisory.

Risk and Exploitability

The CVSS score of 5.3 indicates a moderate severity. No EPSS score is currently available, and the vulnerability is not listed in the CISA KEV catalog. The reported exploit can be initiated remotely via the web interface, and an early issue report has been filed with the maintainer, but no official fix has yet been released.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

hiraishikentaro

wezterm-mcp

affected

Version	Status	Constraints
`0.1.0`	affected	—

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Apply the latest released version of wezterm-mcp once a patch addressing the injection is provided.
Restrict external access to the wezterm-mcp service so that only trusted hosts or IP ranges can send requests through firewall or network policies.
Validate and sanitize the pane_id parameter before it is passed to any system command; ensure it contains only allowed numeric or safe values.
If the switch_pane/write_to_specific_pane functionality is not needed, disable or remove it from the deployment.

Generated by OpenCVE AI on June 1, 2026 at 20:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00734.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://github.com/hiraishikentaro/wezterm-mcp/
https://github.com/hiraishikentaro/wezterm-mcp/issues/7
https://vuldb.com/cve/CVE-2026-10279
https://vuldb.com/submit/825419
https://vuldb.com/vuln/367572
https://vuldb.com/vuln/367572/cti

History

Mon, 01 Jun 2026 21:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Mon, 01 Jun 2026 19:00:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was identified in hiraishikentaro wezterm-mcp 0.1.0. The affected element is an unknown function of the file src/wezterm_executor.ts of the component switch_pane/write_to_specific_pane. The manipulation of the argument request.params.arguments.pane_id leads to os command injection. The attack can be initiated remotely. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.
Title		hiraishikentaro wezterm-mcp switch_pane/write_to_specific_pane wezterm_executor.ts os command injection
First Time appeared		Hiraishikentaro Hiraishikentaro wezterm-mcp
Weaknesses		CWE-77 CWE-78
CPEs		cpe:2.3:a:hiraishikentaro:wezterm-mcp::::::::
Vendors & Products		Hiraishikentaro Hiraishikentaro wezterm-mcp
References		https://github.com/hiraishikentaro/wezterm-mcp/ https://github.com/hiraishikentaro/wezterm-mcp/issues/7 https://vuldb.com/cve/CVE-2026-10279 https://vuldb.com/submit/825419 https://vuldb.com/vuln/367572 https://vuldb.com/vuln/367572/cti
Metrics		cvssV2_0 `{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Hiraishikentaro Wezterm-mcp

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-06-01T17:45:07.204Z

Updated: 2026-06-01T19:09:11.089Z

Reserved: 2026-05-31T16:13:04.659Z

Link: CVE-2026-10279

Vulnrichment

Updated: 2026-06-01T19:09:07.192Z

NVD

Status : Deferred

Published: 2026-06-01T19:16:20.613

Modified: 2026-06-02T13:03:31.153

Link: CVE-2026-10279

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-06-01T20:30:17Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object