VYPR

SSH Mcp

by Tufantunc

Source repositories

CVEs (2)

  • CVE-2026-7039HigApr 26, 2026
    risk 0.51cvss 7.8epss 0.01

    A security vulnerability has been detected in tufantunc ssh-mcp up to 1.5.0. The affected element is the function shell.write of the file src/index.ts. Such manipulation of the argument Description leads to command injection. The attack must be carried out locally. The exploit…

  • CVE-2026-7038LowApr 26, 2026
    risk 0.21cvss 3.3epss 0.00

    A weakness has been identified in tufantunc ssh-mcp up to 1.5.0. Impacted is an unknown function of the file src/index.ts of the component Command Line Handler. This manipulation causes insufficiently protected credentials. The attack is restricted to local execution. The…