radare2-mcp <=1.6.0 OS Command Injection via Shell Metacharacter Bypass

radare2-mcp version 1.6.0 and earlier contains an os command injection vulnerability that allows remote attackers to execute arbitrary commands by bypassing the command filter through shell metacharacters in user-controlled input passed to r2_cmd_str(). Attackers can inject shell metacharacters through the jsonrpc interface parameters to achieve remote code execution on the host running radare2-mcp without requiring authentication.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

N/A

Radare2 MCP Server 操作系统命令注入漏洞

Radare2 MCP Server是radare org开源的一款基于radare2的二进制分析工具。 Radare2 MCP Server 1.6.0及之前版本存在操作系统命令注入漏洞，该漏洞源于操作系统命令注入，允许远程攻击者通过用户控制输入中的shell元字符绕过命令过滤器执行任意命令。

N/A

N/A