CVE-2026-5029— RCE in Code Runner MCP Server
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-5029
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
RCE in Code Runner MCP Server
Source: NVD (National Vulnerability Database)
Vulnerability Description
A remote code execution vulnerability exists in Code Runner MCP Server when run with the --transport http option, which exposes the /mcp JSON-RPC endpoint without authentication on port 3088. An unauthenticated remote attacker can invoke the run-code MCP tool to supply arbitrary source code and execute it via child_process.exec() using the specified language interpreter. This allows execution of arbitrary code with the privileges of the user running the server. This vulnerability has not been fixed and might affect the project in all versions.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
关键功能的认证机制缺失
Source: NVD (National Vulnerability Database)
Vulnerability Title
Code Runner MCP Server 访问控制错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Code Runner MCP Server是Jun Han个人开发者的一款多语言代码运行与结果展示工具。 Code Runner MCP Server存在访问控制错误漏洞,该漏洞源于使用--transport http选项运行时,在端口3088上暴露未经身份验证的/mcp JSON-RPC端点,可能导致未经身份验证的远程攻击者调用run-code MCP工具,通过child_process.exec()使用指定语言解释器执行任意源代码,从而以运行服务器的用户权限执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Code Runner MCP Server | Code Runner MCP Server | 0 ~ * | - |
II. Public POCs for CVE-2026-5029
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-5029
请登录查看更多情报信息。
- https://cert.pl/en/posts/2026/05/CVE-2026-5029third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2026-5029
IV. Related Vulnerabilities
Same weakness: CWE-306
- CVE-2026-45397
Open WebUI: Unauthenticated RAG Configuration Disclosure - CVE-2026-45248
Hedera Guardian Authentication Bypass Information Disclosure - CVE-2026-44592
Gradient: Unauthenticated worker on /proto → arbitrary NAR w - CVE-2026-42283
DevSpace UI Server WebSocket CheckOrigin does not validate s - CVE-2025-62619
KVM漏洞:密钥下载接口缺少认证致敏感信息泄露
V. Comments for CVE-2026-5029
No comments yet