Vulnerability: One-click Remote Code Execution Through Deep Links for MCP Install Package: Dive Affected Versions: <= 0.12.6 Patched Versions: 0.13.0 Summary: - A crafted deeplink can install an attacker-controlled MCP server configuration without user confirmation. - Leads to arbitrary local command execution on the victim's machine. Details: - Deeplink handler installs an MCP server without user confirmation in certain scenarios. - Vulnerability fixed through commit by requiring frontend confirmation. - Confirmation prompt only appears when is . - Backend allows multiple transport modes ( , , , ). - RCE occurs when is executed in non-stdio transports. PoC: - Crafting a malicious deeplink triggers remote code execution. Impact: - Remote code execution on victim's machine with latest Dive (<= 0.12.6) installed. Severity: - Critical, with CVSS v3 base metric of 9.7/10. - Severity metrics include , , , , , , , and .