VYPR
Unrated severityOSV Advisory· Published Jan 16, 2026· Updated Jan 16, 2026

Dive allows One-click Remote Code Execution through Deep Links for MCP Install

CVE-2026-23523

Description

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the victim’s machine. This vulnerability is fixed in 0.13.0.

Affected products

2
  • Openagentplatform/DiveOSV2 versions
    v0.1.1, v0.10.0, v0.10.1, …+ 1 more
    • (no CPE)range: v0.1.1, v0.10.0, v0.10.1, …
    • (no CPE)range: <0.13.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.