CVE-2025-61492

Publication date

2026-01-07 00:00:00

Family

mitre

State

PUBLISHED

Description

A command injection vulnerability in the execute_command function of terminal-controller-mcp 0.1.7 allows attackers to execute arbitrary commands via a crafted input.