CVE-2025-69902 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A command injection vulnerability in the minimal_wrapper.py component of kubectl-mcp-server v1.2.0 allows attackers to execute arbitrary commands via injecting…
Critical CVSS: 9.8

CVE-2025-69902

A command injection vulnerability in the minimal_wrapper.py component of kubectl-mcp-server v1.2.0 allows attackers to execute arbitrary commands via injecting arbitrary shell metacharacters.
Vendor
-
Product
-
CWE
CWE-94
Yayın Tarihi
2026-03-16 21:16:17
Güncelleme
2026-03-17 14:20:01
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-94 CRITICAL 2026

Referanslar

https://asec.ahnlab.com/ko/92922/ https://github.com/rohitg00/kubectl-mcp-server https://github.com/rohitg00/kubectl-mcp-server/blob/main/kubectl_mcp_tool/minimal_wrapper.py https://pypi.org/project/kubectl-mcp-tool