Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
tufantunc ssh-mcp Command Line index.ts insufficiently protected credentials
Vulnerability Description
A weakness has been identified in tufantunc ssh-mcp up to 1.5.0. Impacted is an unknown function of the file src/index.ts of the component Command Line Handler. This manipulation causes insufficiently protected credentials. The attack is restricted to local execution. The exploit has been made available to the public and could be used for attacks. The project was informed of the problem early through an issue report but has not responded yet.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
不充分的凭证保护机制
Vulnerability Title
SSH MCP Server 安全漏洞
Vulnerability Description
SSH MCP Server是Tufan Tunç个人开发者的一个通过SSH远程执行Shell命令的工具。 SSH MCP Server 1.5.0及之前版本存在安全漏洞,该漏洞源于Command Line Handler组件中src/index.ts文件对凭证保护不当,可能导致凭据泄露。
CVSS Information
N/A
Vulnerability Type
N/A