CVE-2026-7039 - Vulnerability Details

- tufantunc ssh-mcp index.ts shell.write command injection

Description

A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.

Published: 2026-04-26

Score: 8.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The ssh‑mcp component contains a local command injection flaw within the shell.write function exposed in src/index.ts. An attacker controlling the Description parameter can inject arbitrary shell commands. This weakness falls under CWE‑74 and CWE‑77, allowing illicit command execution in the context of the running process. Because the vulnerability requires local access, it could be leveraged by operators or compromised local accounts to gain escalated privileges or disrupt services.

Affected Systems

vulnerable versions of tufantunc ssh‑mcp released up to 1.5.0 are affected. System administrators running any of these releases should review their deployment and plan an update as soon as a fixed version becomes available. No other product versions are currently indicated as impacted.

Risk and Exploitability

The CVSS score of 8.5 indicates high severity, but the EPSS score is less than 1%, suggesting low current exploitation probability. The vulnerability remains unpublished in the CISA KEV catalog. The attack vector is local, requiring the attacker to have access to the host where ssh‑mcp is running. Although publicly disclosed, the maintainer has not yet released a fix, so users must rely on mitigation until an official patch arrives.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

tufantunc

ssh-mcp

affected

Version	Status	Constraints
`1.0`	affected	—
`1.1`	affected	—
`1.2`	affected	—
`1.3`	affected	—
`1.4`	affected	—
`1.5.0`	affected	—

No data.

Vendor Product Confidence Versions

Tufantunc

Ssh-mcp

100%

Version	Status	Scheme	Platform
`1.0`	affected	generic	—
`1.1`	affected	generic	—
`1.2`	affected	generic	—
`1.3`	affected	generic	—
`1.4`	affected	generic	—
`1.5.0`	affected	generic	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

If an official patch is released, upgrade to the fixed version immediately.
Restrict local execution of ssh‑mcp to privileged users only, and monitor local user accounts.
Implement a wrapper or filter to sanitize the Description argument, escaping shell metacharacters before passing to shell.write.

Generated by OpenCVE AI on April 28, 2026 at 05:18 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00077.

Exploitation poc

Automatable no

Technical Impact total

References

Link	Providers
https://github.com/tufantunc/ssh-mcp/
https://github.com/tufantunc/ssh-mcp/issues/44
https://vuldb.com/submit/798528
https://vuldb.com/vuln/359619
https://vuldb.com/vuln/359619/cti

History

Mon, 27 Apr 2026 21:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Mon, 27 Apr 2026 20:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Tufantunc Tufantunc ssh-mcp
Vendors & Products		Tufantunc Tufantunc ssh-mcp

Sun, 26 Apr 2026 13:00:00 +0000

Type	Values Removed	Values Added
Description		A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit has been disclosed publicly and may be used. The project was informed of the problem early through an issue report but has not responded yet.
Title		tufantunc ssh-mcp index.ts shell.write command injection
Weaknesses		CWE-74 CWE-77
References		https://github.com/tufantunc/ssh-mcp/ https://github.com/tufantunc/ssh-mcp/issues/44 https://vuldb.com/submit/798528 https://vuldb.com/vuln/359619 https://vuldb.com/vuln/359619/cti
Metrics		cvssV2_0 `{'score': 6.8, 'vector': 'AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:ND/RC:C'}` cvssV3_0 `{'score': 7.8, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C'}` cvssV3_1 `{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:X/RC:C'}` cvssV4_0 `{'score': 8.5, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Tufantunc Ssh-mcp

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-04-26T12:30:17.540Z

Updated: 2026-04-27T20:05:31.957Z

Reserved: 2026-04-25T15:51:48.832Z

Link: CVE-2026-7039

Vulnrichment

Updated: 2026-04-27T20:05:26.419Z

NVD

Status : Deferred

Published: 2026-04-26T13:16:00.727

Modified: 2026-04-29T01:00:01.613

Link: CVE-2026-7039

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-28T05:30:23Z

Weaknesses

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact High

Vulnerable System Integrity Impact High

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Exploitation poc

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object