Search

Find a vulnerability

Search criteria

    10 vulnerabilities found for DesktopCommanderMCP by wonderwhy-er

    CVE-2026-10691 (GCVE-0-2026-10691)

    Vulnerability from nvd – Published: 2026-06-02 23:30 – Updated: 2026-06-03 13:47 X_Open Source
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos
    Summary
    A security flaw has been discovered in wonderwhy-er DesktopCommanderMCP up to 0.2.38. This impacts an unknown function of the file src/search-manager.ts of the component start_search. Performing a manipulation of the argument SearchResult[] results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. Upgrading to version 0.2.39 will fix this issue. The patch is named 4ce845f8749b6a159b57b38dcc3357f7222a8078. It is suggested to upgrade the affected component.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1333 - Inefficient Regular Expression Complexity
    • CWE-400 - Resource Consumption
    Assigner
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Affected: 0.2.14
    Affected: 0.2.15
    Affected: 0.2.16
    Affected: 0.2.17
    Affected: 0.2.18
    Affected: 0.2.19
    Affected: 0.2.20
    Affected: 0.2.21
    Affected: 0.2.22
    Affected: 0.2.23
    Affected: 0.2.24
    Affected: 0.2.25
    Affected: 0.2.26
    Affected: 0.2.27
    Affected: 0.2.28
    Affected: 0.2.29
    Affected: 0.2.30
    Affected: 0.2.31
    Affected: 0.2.32
    Affected: 0.2.33
    Affected: 0.2.34
    Affected: 0.2.35
    Affected: 0.2.36
    Affected: 0.2.37
    Affected: 0.2.38
    Unaffected: 0.2.39
        cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    skywings (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-10691",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-03T13:46:45.461875Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T13:47:07.613Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*"
              ],
              "modules": [
                "start_search"
              ],
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                },
                {
                  "status": "affected",
                  "version": "0.2.14"
                },
                {
                  "status": "affected",
                  "version": "0.2.15"
                },
                {
                  "status": "affected",
                  "version": "0.2.16"
                },
                {
                  "status": "affected",
                  "version": "0.2.17"
                },
                {
                  "status": "affected",
                  "version": "0.2.18"
                },
                {
                  "status": "affected",
                  "version": "0.2.19"
                },
                {
                  "status": "affected",
                  "version": "0.2.20"
                },
                {
                  "status": "affected",
                  "version": "0.2.21"
                },
                {
                  "status": "affected",
                  "version": "0.2.22"
                },
                {
                  "status": "affected",
                  "version": "0.2.23"
                },
                {
                  "status": "affected",
                  "version": "0.2.24"
                },
                {
                  "status": "affected",
                  "version": "0.2.25"
                },
                {
                  "status": "affected",
                  "version": "0.2.26"
                },
                {
                  "status": "affected",
                  "version": "0.2.27"
                },
                {
                  "status": "affected",
                  "version": "0.2.28"
                },
                {
                  "status": "affected",
                  "version": "0.2.29"
                },
                {
                  "status": "affected",
                  "version": "0.2.30"
                },
                {
                  "status": "affected",
                  "version": "0.2.31"
                },
                {
                  "status": "affected",
                  "version": "0.2.32"
                },
                {
                  "status": "affected",
                  "version": "0.2.33"
                },
                {
                  "status": "affected",
                  "version": "0.2.34"
                },
                {
                  "status": "affected",
                  "version": "0.2.35"
                },
                {
                  "status": "affected",
                  "version": "0.2.36"
                },
                {
                  "status": "affected",
                  "version": "0.2.37"
                },
                {
                  "status": "affected",
                  "version": "0.2.38"
                },
                {
                  "status": "unaffected",
                  "version": "0.2.39"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "skywings (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A security flaw has been discovered in wonderwhy-er DesktopCommanderMCP up to 0.2.38. This impacts an unknown function of the file src/search-manager.ts of the component start_search. Performing a manipulation of the argument SearchResult[] results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. Upgrading to version 0.2.39 will fix this issue. The patch is named 4ce845f8749b6a159b57b38dcc3357f7222a8078. It is suggested to upgrade the affected component."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 4,
                "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1333",
                  "description": "Inefficient Regular Expression Complexity",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-02T23:30:14.612Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-367960 | wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/vuln/367960"
            },
            {
              "name": "VDB-367960 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/vuln/367960/cti"
            },
            {
              "name": "CVE-2026-10691 | CVE Analysis and Report",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/cve/CVE-2026-10691"
            },
            {
              "name": "Submit #830746 | wonderwhy-er DesktopCommanderMCP 0.2.37 Denial of Service",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/submit/830746"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/375"
            },
            {
              "tags": [
                "issue-tracking",
                "patch"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/pull/400"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/commit/4ce845f8749b6a159b57b38dcc3357f7222a8078"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/releases/tag/v0.2.39"
            },
            {
              "tags": [
                "product"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/"
            }
          ],
          "tags": [
            "x_open-source"
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-06-02T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2026-06-02T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2026-06-02T17:45:49.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2026-10691",
        "datePublished": "2026-06-02T23:30:14.612Z",
        "dateReserved": "2026-06-02T15:40:41.889Z",
        "dateUpdated": "2026-06-03T13:47:07.613Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-10690 (GCVE-0-2026-10690)

    Vulnerability from nvd – Published: 2026-06-02 23:15 – Updated: 2026-06-03 14:04 X_Open Source
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery
    Summary
    A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation of the argument url leads to server-side request forgery. The attack may be performed from remote. The exploit is publicly available and might be used. The name of the patch is 53699bebba9950047bca16ac4dc8f0568f596aaa. It is best practice to apply a patch to resolve this issue.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-918 - Server-Side Request Forgery
    Assigner
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.37
        cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    skywings (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-10690",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-03T14:04:11.391815Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T14:04:32.907Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://vuldb.com/submit/830735"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*"
              ],
              "modules": [
                "read_file"
              ],
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.37"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "skywings (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation of the argument url leads to server-side request forgery. The attack may be performed from remote. The exploit is publicly available and might be used. The name of the patch is 53699bebba9950047bca16ac4dc8f0568f596aaa. It is best practice to apply a patch to resolve this issue."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-918",
                  "description": "Server-Side Request Forgery",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-02T23:15:08.998Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-367959 | wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/vuln/367959"
            },
            {
              "name": "VDB-367959 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/vuln/367959/cti"
            },
            {
              "name": "CVE-2026-10690 | CVE Analysis and Report",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/cve/CVE-2026-10690"
            },
            {
              "name": "Submit #830735 | wonderwhy-er DesktopCommanderMCP 0.2.37 Server-Side Request Forgery",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/submit/830735"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/410"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/sorlen008/DesktopCommanderMCP/commit/53699bebba9950047bca16ac4dc8f0568f596aaa"
            },
            {
              "tags": [
                "product"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/"
            }
          ],
          "tags": [
            "x_open-source"
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-06-02T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2026-06-02T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2026-06-02T17:45:46.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2026-10690",
        "datePublished": "2026-06-02T23:15:08.998Z",
        "dateReserved": "2026-06-02T15:40:39.523Z",
        "dateUpdated": "2026-06-03T14:04:32.907Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-11491 (GCVE-0-2025-11491)

    Vulnerability from nvd – Published: 2025-10-08 19:02 – Updated: 2025-10-23 04:25
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection
    Summary
    A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element is the function CommandManager of the file src/command-manager.ts. Performing manipulation results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.327610 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.327610 signaturepermissions-required
    https://vuldb.com/?submit.668006 third-party-advisory
    https://github.com/wonderwhy-er/DesktopCommanderM… issue-tracking
    https://github.com/wonderwhy-er/DesktopCommanderM… exploitissue-tracking
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Create a notification for this product.
    Credits
    Max Alster-Caminer (Mantel) crem (VulDB User) crem (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11491",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-08T19:30:05.417130Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-08T19:31:17.031Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Max Alster-Caminer (Mantel)"
            },
            {
              "lang": "en",
              "type": "reporter",
              "value": "crem (VulDB User)"
            },
            {
              "lang": "en",
              "type": "analyst",
              "value": "crem (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element is the function CommandManager of the file src/command-manager.ts. Performing manipulation results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used."
            },
            {
              "lang": "de",
              "value": "In wonderwhy-er DesktopCommanderMCP up to 0.2.13 wurde eine Schwachstelle gefunden. Es geht um die Funktion CommandManager der Datei src/command-manager.ts. Durch Beeinflussen mit unbekannten Daten kann eine os command injection-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T04:25:49.508Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-327610 | wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.327610"
            },
            {
              "name": "VDB-327610 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.327610"
            },
            {
              "name": "Submit #668006 | wonderwhy-er DesktopCommanderMCP 0.2.13 Improper Neutralization",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.668006"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/217"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/217#issue-3343853704"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-08T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-08T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-23T06:27:50.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-11491",
        "datePublished": "2025-10-08T19:02:05.860Z",
        "dateReserved": "2025-10-08T10:53:43.606Z",
        "dateUpdated": "2025-10-23T04:25:49.508Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-11490 (GCVE-0-2025-11490)

    Vulnerability from nvd – Published: 2025-10-08 18:32 – Updated: 2025-10-23 04:25
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection
    Summary
    A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute Path Handler. Such manipulation leads to os command injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor explains: "The usual use case is that AI is asked to do something, picks commands itself, and typically uses simple command names without absolute paths. It's curious why a user would ask the model to bypass restrictions this way. (...) This could potentially be a problem, but we are yet to hear reports of this being an issue in actual workflows. We'll leave this issue open for situations where people may report this as a problem for the long term."
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Create a notification for this product.
    Credits
    Max Alster-Caminer (Mantel) crem (VulDB User) crem (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11490",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-08T19:25:53.411708Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-08T19:26:21.759Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218"
              },
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issue-3343855120"
              },
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issuecomment-3214135034"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "modules": [
                "Absolute Path Handler"
              ],
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Max Alster-Caminer (Mantel)"
            },
            {
              "lang": "en",
              "type": "reporter",
              "value": "crem (VulDB User)"
            },
            {
              "lang": "en",
              "type": "analyst",
              "value": "crem (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute Path Handler. Such manipulation leads to os command injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor explains: \"The usual use case is that AI is asked to do something, picks commands itself, and typically uses simple command names without absolute paths. It\u0027s curious why a user would ask the model to bypass restrictions this way. (...) This could potentially be a problem, but we are yet to hear reports of this being an issue in actual workflows. We\u0027ll leave this issue open for situations where people may report this as a problem for the long term.\""
            },
            {
              "lang": "de",
              "value": "Es wurde eine Schwachstelle in wonderwhy-er DesktopCommanderMCP up to 0.2.13 entdeckt. Betroffen hiervon ist die Funktion extractBaseCommand der Datei src/command-manager.ts der Komponente Absolute Path Handler. Durch das Beeinflussen mit unbekannten Daten kann eine os command injection-Schwachstelle ausgenutzt werden. Der Angriff kann remote ausgef\u00fchrt werden. Die Ausnutzung wurde ver\u00f6ffentlicht und kann verwendet werden."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T04:25:58.602Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-327609 | wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.327609"
            },
            {
              "name": "VDB-327609 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.327609"
            },
            {
              "name": "Submit #668005 | wonderwhy-er DesktopCommanderMCP 0.2.13 OS Command Injection",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.668005"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issuecomment-3214135034"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issue-3343855120"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-08T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-08T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-23T06:27:55.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-11490",
        "datePublished": "2025-10-08T18:32:05.161Z",
        "dateReserved": "2025-10-08T10:53:40.882Z",
        "dateUpdated": "2025-10-23T04:25:58.602Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-11489 (GCVE-0-2025-11489)

    Vulnerability from nvd – Published: 2025-10-08 18:02 – Updated: 2025-10-23 04:26 Unsupported When Assigned
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink
    Summary
    A security vulnerability has been detected in wonderwhy-er DesktopCommanderMCP up to 0.2.13. This vulnerability affects the function isPathAllowed of the file src/tools/filesystem.ts. The manipulation leads to symlink following. The attack can only be performed from a local environment. The attack's complexity is rated as high. It is stated that the exploitability is difficult. The exploit has been disclosed publicly and may be used. The vendor explains: "Our restriction features are designed as guardrails for LLMs to help them stay closer to what users want, rather than hardened security boundaries. (...) For users where security is a top priority, we continue to recommend using Desktop Commander with Docker, which provides actual isolation. (...) We'll keep this issue open for future consideration if we receive more user demand for improved restrictions." This vulnerability only affects products that are no longer supported by the maintainer.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Create a notification for this product.
    Credits
    Max Alster-Caminer (Mantel) crem (VulDB User) crem (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11489",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-08T18:30:58.825762Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-08T18:31:28.150Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Max Alster-Caminer (Mantel)"
            },
            {
              "lang": "en",
              "type": "reporter",
              "value": "crem (VulDB User)"
            },
            {
              "lang": "en",
              "type": "analyst",
              "value": "crem (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A security vulnerability has been detected in wonderwhy-er DesktopCommanderMCP up to 0.2.13. This vulnerability affects the function isPathAllowed of the file src/tools/filesystem.ts. The manipulation leads to symlink following. The attack can only be performed from a local environment. The attack\u0027s complexity is rated as high. It is stated that the exploitability is difficult. The exploit has been disclosed publicly and may be used. The vendor explains: \"Our restriction features are designed as guardrails for LLMs to help them stay closer to what users want, rather than hardened security boundaries. (...) For users where security is a top priority, we continue to recommend using Desktop Commander with Docker, which provides actual isolation. (...) We\u0027ll keep this issue open for future consideration if we receive more user demand for improved restrictions.\" This vulnerability only affects products that are no longer supported by the maintainer."
            },
            {
              "lang": "de",
              "value": "In wonderwhy-er DesktopCommanderMCP up to 0.2.13 wurde eine Schwachstelle gefunden. Hiervon betroffen ist die Funktion isPathAllowed der Datei src/tools/filesystem.ts. Mittels Manipulieren mit unbekannten Daten kann eine symlink following-Schwachstelle ausgenutzt werden. Der Angriff muss lokal erfolgen. Das Durchf\u00fchren eines Angriffs ist mit einer relativ hohen Komplexit\u00e4t verbunden. Sie gilt als schwierig auszunutzen. Der Exploit wurde der \u00d6ffentlichkeit bekannt gemacht und k\u00f6nnte verwendet werden."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 2,
                "baseSeverity": "LOW",
                "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 4.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 4.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 3.5,
                "vectorString": "AV:L/AC:H/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-61",
                  "description": "Symlink Following",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "Link Following",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T04:26:22.910Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-327606 | wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.327606"
            },
            {
              "name": "VDB-327606 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.327606"
            },
            {
              "name": "Submit #668004 | wonderwhy-er DesktopCommanderMCP 0.2.13  wonderwhy-er",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.668004"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/219"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/219#issuecomment-3214114903"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/219#issue-3343862329"
            }
          ],
          "tags": [
            "unsupported-when-assigned"
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-08T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-08T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-23T06:28:27.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-11489",
        "datePublished": "2025-10-08T18:02:11.266Z",
        "dateReserved": "2025-10-08T10:41:17.305Z",
        "dateUpdated": "2025-10-23T04:26:22.910Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-10691 (GCVE-0-2026-10691)

    Vulnerability from cvelistv5 – Published: 2026-06-02 23:30 – Updated: 2026-06-03 13:47 X_Open Source
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos
    Summary
    A security flaw has been discovered in wonderwhy-er DesktopCommanderMCP up to 0.2.38. This impacts an unknown function of the file src/search-manager.ts of the component start_search. Performing a manipulation of the argument SearchResult[] results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. Upgrading to version 0.2.39 will fix this issue. The patch is named 4ce845f8749b6a159b57b38dcc3357f7222a8078. It is suggested to upgrade the affected component.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-1333 - Inefficient Regular Expression Complexity
    • CWE-400 - Resource Consumption
    Assigner
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Affected: 0.2.14
    Affected: 0.2.15
    Affected: 0.2.16
    Affected: 0.2.17
    Affected: 0.2.18
    Affected: 0.2.19
    Affected: 0.2.20
    Affected: 0.2.21
    Affected: 0.2.22
    Affected: 0.2.23
    Affected: 0.2.24
    Affected: 0.2.25
    Affected: 0.2.26
    Affected: 0.2.27
    Affected: 0.2.28
    Affected: 0.2.29
    Affected: 0.2.30
    Affected: 0.2.31
    Affected: 0.2.32
    Affected: 0.2.33
    Affected: 0.2.34
    Affected: 0.2.35
    Affected: 0.2.36
    Affected: 0.2.37
    Affected: 0.2.38
    Unaffected: 0.2.39
        cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    skywings (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-10691",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-03T13:46:45.461875Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T13:47:07.613Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*"
              ],
              "modules": [
                "start_search"
              ],
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                },
                {
                  "status": "affected",
                  "version": "0.2.14"
                },
                {
                  "status": "affected",
                  "version": "0.2.15"
                },
                {
                  "status": "affected",
                  "version": "0.2.16"
                },
                {
                  "status": "affected",
                  "version": "0.2.17"
                },
                {
                  "status": "affected",
                  "version": "0.2.18"
                },
                {
                  "status": "affected",
                  "version": "0.2.19"
                },
                {
                  "status": "affected",
                  "version": "0.2.20"
                },
                {
                  "status": "affected",
                  "version": "0.2.21"
                },
                {
                  "status": "affected",
                  "version": "0.2.22"
                },
                {
                  "status": "affected",
                  "version": "0.2.23"
                },
                {
                  "status": "affected",
                  "version": "0.2.24"
                },
                {
                  "status": "affected",
                  "version": "0.2.25"
                },
                {
                  "status": "affected",
                  "version": "0.2.26"
                },
                {
                  "status": "affected",
                  "version": "0.2.27"
                },
                {
                  "status": "affected",
                  "version": "0.2.28"
                },
                {
                  "status": "affected",
                  "version": "0.2.29"
                },
                {
                  "status": "affected",
                  "version": "0.2.30"
                },
                {
                  "status": "affected",
                  "version": "0.2.31"
                },
                {
                  "status": "affected",
                  "version": "0.2.32"
                },
                {
                  "status": "affected",
                  "version": "0.2.33"
                },
                {
                  "status": "affected",
                  "version": "0.2.34"
                },
                {
                  "status": "affected",
                  "version": "0.2.35"
                },
                {
                  "status": "affected",
                  "version": "0.2.36"
                },
                {
                  "status": "affected",
                  "version": "0.2.37"
                },
                {
                  "status": "affected",
                  "version": "0.2.38"
                },
                {
                  "status": "unaffected",
                  "version": "0.2.39"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "skywings (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A security flaw has been discovered in wonderwhy-er DesktopCommanderMCP up to 0.2.38. This impacts an unknown function of the file src/search-manager.ts of the component start_search. Performing a manipulation of the argument SearchResult[] results in inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has been released to the public and may be used for attacks. Upgrading to version 0.2.39 will fix this issue. The patch is named 4ce845f8749b6a159b57b38dcc3357f7222a8078. It is suggested to upgrade the affected component."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 4.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 4,
                "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-1333",
                  "description": "Inefficient Regular Expression Complexity",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-02T23:30:14.612Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-367960 | wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/vuln/367960"
            },
            {
              "name": "VDB-367960 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/vuln/367960/cti"
            },
            {
              "name": "CVE-2026-10691 | CVE Analysis and Report",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/cve/CVE-2026-10691"
            },
            {
              "name": "Submit #830746 | wonderwhy-er DesktopCommanderMCP 0.2.37 Denial of Service",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/submit/830746"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/375"
            },
            {
              "tags": [
                "issue-tracking",
                "patch"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/pull/400"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/commit/4ce845f8749b6a159b57b38dcc3357f7222a8078"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/releases/tag/v0.2.39"
            },
            {
              "tags": [
                "product"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/"
            }
          ],
          "tags": [
            "x_open-source"
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-06-02T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2026-06-02T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2026-06-02T17:45:49.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP start_search search-manager.ts redos"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2026-10691",
        "datePublished": "2026-06-02T23:30:14.612Z",
        "dateReserved": "2026-06-02T15:40:41.889Z",
        "dateUpdated": "2026-06-03T13:47:07.613Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-10690 (GCVE-0-2026-10690)

    Vulnerability from cvelistv5 – Published: 2026-06-02 23:15 – Updated: 2026-06-03 14:04 X_Open Source
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery
    Summary
    A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation of the argument url leads to server-side request forgery. The attack may be performed from remote. The exploit is publicly available and might be used. The name of the patch is 53699bebba9950047bca16ac4dc8f0568f596aaa. It is best practice to apply a patch to resolve this issue.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-918 - Server-Side Request Forgery
    Assigner
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.37
        cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    skywings (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-10690",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-06-03T14:04:11.391815Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-06-03T14:04:32.907Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://vuldb.com/submit/830735"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "cpes": [
                "cpe:2.3:a:wonderwhy-er:desktopcommandermcp:*:*:*:*:*:*:*:*"
              ],
              "modules": [
                "read_file"
              ],
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.37"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "skywings (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was identified in wonderwhy-er DesktopCommanderMCP 0.2.37. This affects the function readFileFromUrl of the file src/tools/filesystem.ts of the component read_file. Such manipulation of the argument url leads to server-side request forgery. The attack may be performed from remote. The exploit is publicly available and might be used. The name of the patch is 53699bebba9950047bca16ac4dc8f0568f596aaa. It is best practice to apply a patch to resolve this issue."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:OF/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-918",
                  "description": "Server-Side Request Forgery",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-02T23:15:08.998Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-367959 | wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/vuln/367959"
            },
            {
              "name": "VDB-367959 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/vuln/367959/cti"
            },
            {
              "name": "CVE-2026-10690 | CVE Analysis and Report",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/cve/CVE-2026-10690"
            },
            {
              "name": "Submit #830735 | wonderwhy-er DesktopCommanderMCP 0.2.37 Server-Side Request Forgery",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/submit/830735"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/410"
            },
            {
              "tags": [
                "patch"
              ],
              "url": "https://github.com/sorlen008/DesktopCommanderMCP/commit/53699bebba9950047bca16ac4dc8f0568f596aaa"
            },
            {
              "tags": [
                "product"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/"
            }
          ],
          "tags": [
            "x_open-source"
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2026-06-02T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2026-06-02T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2026-06-02T17:45:46.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP read_file filesystem.ts readFileFromUrl server-side request forgery"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2026-10690",
        "datePublished": "2026-06-02T23:15:08.998Z",
        "dateReserved": "2026-06-02T15:40:39.523Z",
        "dateUpdated": "2026-06-03T14:04:32.907Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-11491 (GCVE-0-2025-11491)

    Vulnerability from cvelistv5 – Published: 2025-10-08 19:02 – Updated: 2025-10-23 04:25
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection
    Summary
    A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element is the function CommandManager of the file src/command-manager.ts. Performing manipulation results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    URL Tags
    https://vuldb.com/?id.327610 vdb-entrytechnical-description
    https://vuldb.com/?ctiid.327610 signaturepermissions-required
    https://vuldb.com/?submit.668006 third-party-advisory
    https://github.com/wonderwhy-er/DesktopCommanderM… issue-tracking
    https://github.com/wonderwhy-er/DesktopCommanderM… exploitissue-tracking
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Create a notification for this product.
    Credits
    Max Alster-Caminer (Mantel) crem (VulDB User) crem (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11491",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-08T19:30:05.417130Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-08T19:31:17.031Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Max Alster-Caminer (Mantel)"
            },
            {
              "lang": "en",
              "type": "reporter",
              "value": "crem (VulDB User)"
            },
            {
              "lang": "en",
              "type": "analyst",
              "value": "crem (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability was found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The impacted element is the function CommandManager of the file src/command-manager.ts. Performing manipulation results in os command injection. It is possible to initiate the attack remotely. The exploit has been made public and could be used."
            },
            {
              "lang": "de",
              "value": "In wonderwhy-er DesktopCommanderMCP up to 0.2.13 wurde eine Schwachstelle gefunden. Es geht um die Funktion CommandManager der Datei src/command-manager.ts. Durch Beeinflussen mit unbekannten Daten kann eine os command injection-Schwachstelle ausgenutzt werden. Der Angriff kann \u00fcber das Netzwerk angegangen werden. Der Exploit steht zur \u00f6ffentlichen Verf\u00fcgung."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T04:25:49.508Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-327610 | wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.327610"
            },
            {
              "name": "VDB-327610 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.327610"
            },
            {
              "name": "Submit #668006 | wonderwhy-er DesktopCommanderMCP 0.2.13 Improper Neutralization",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.668006"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/217"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/217#issue-3343853704"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-08T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-08T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-23T06:27:50.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP command-manager.ts CommandManager os command injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-11491",
        "datePublished": "2025-10-08T19:02:05.860Z",
        "dateReserved": "2025-10-08T10:53:43.606Z",
        "dateUpdated": "2025-10-23T04:25:49.508Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-11490 (GCVE-0-2025-11490)

    Vulnerability from cvelistv5 – Published: 2025-10-08 18:32 – Updated: 2025-10-23 04:25
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection
    Summary
    A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute Path Handler. Such manipulation leads to os command injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor explains: "The usual use case is that AI is asked to do something, picks commands itself, and typically uses simple command names without absolute paths. It's curious why a user would ask the model to bypass restrictions this way. (...) This could potentially be a problem, but we are yet to hear reports of this being an issue in actual workflows. We'll leave this issue open for situations where people may report this as a problem for the long term."
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Create a notification for this product.
    Credits
    Max Alster-Caminer (Mantel) crem (VulDB User) crem (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11490",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-08T19:25:53.411708Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-08T19:26:21.759Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "references": [
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218"
              },
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issue-3343855120"
              },
              {
                "tags": [
                  "exploit"
                ],
                "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issuecomment-3214135034"
              }
            ],
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "modules": [
                "Absolute Path Handler"
              ],
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Max Alster-Caminer (Mantel)"
            },
            {
              "lang": "en",
              "type": "reporter",
              "value": "crem (VulDB User)"
            },
            {
              "lang": "en",
              "type": "analyst",
              "value": "crem (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A vulnerability has been found in wonderwhy-er DesktopCommanderMCP up to 0.2.13. The affected element is the function extractBaseCommand of the file src/command-manager.ts of the component Absolute Path Handler. Such manipulation leads to os command injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used. The vendor explains: \"The usual use case is that AI is asked to do something, picks commands itself, and typically uses simple command names without absolute paths. It\u0027s curious why a user would ask the model to bypass restrictions this way. (...) This could potentially be a problem, but we are yet to hear reports of this being an issue in actual workflows. We\u0027ll leave this issue open for situations where people may report this as a problem for the long term.\""
            },
            {
              "lang": "de",
              "value": "Es wurde eine Schwachstelle in wonderwhy-er DesktopCommanderMCP up to 0.2.13 entdeckt. Betroffen hiervon ist die Funktion extractBaseCommand der Datei src/command-manager.ts der Komponente Absolute Path Handler. Durch das Beeinflussen mit unbekannten Daten kann eine os command injection-Schwachstelle ausgenutzt werden. Der Angriff kann remote ausgef\u00fchrt werden. Die Ausnutzung wurde ver\u00f6ffentlicht und kann verwendet werden."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 6.5,
                "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-78",
                  "description": "OS Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "Command Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T04:25:58.602Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-327609 | wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.327609"
            },
            {
              "name": "VDB-327609 | CTI Indicators (IOB, IOC, TTP, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.327609"
            },
            {
              "name": "Submit #668005 | wonderwhy-er DesktopCommanderMCP 0.2.13 OS Command Injection",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.668005"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issuecomment-3214135034"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/218#issue-3343855120"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-08T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-08T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-23T06:27:55.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP Absolute Path command-manager.ts extractBaseCommand os command injection"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-11490",
        "datePublished": "2025-10-08T18:32:05.161Z",
        "dateReserved": "2025-10-08T10:53:40.882Z",
        "dateUpdated": "2025-10-23T04:25:58.602Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-11489 (GCVE-0-2025-11489)

    Vulnerability from cvelistv5 – Published: 2025-10-08 18:02 – Updated: 2025-10-23 04:26 Unsupported When Assigned
    VLAI
    Title
    wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink
    Summary
    A security vulnerability has been detected in wonderwhy-er DesktopCommanderMCP up to 0.2.13. This vulnerability affects the function isPathAllowed of the file src/tools/filesystem.ts. The manipulation leads to symlink following. The attack can only be performed from a local environment. The attack's complexity is rated as high. It is stated that the exploitability is difficult. The exploit has been disclosed publicly and may be used. The vendor explains: "Our restriction features are designed as guardrails for LLMs to help them stay closer to what users want, rather than hardened security boundaries. (...) For users where security is a top priority, we continue to recommend using Desktop Commander with Docker, which provides actual isolation. (...) We'll keep this issue open for future consideration if we receive more user demand for improved restrictions." This vulnerability only affects products that are no longer supported by the maintainer.
    SSVC
    Exploitation: poc Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    wonderwhy-er DesktopCommanderMCP Affected: 0.2.0
    Affected: 0.2.1
    Affected: 0.2.2
    Affected: 0.2.3
    Affected: 0.2.4
    Affected: 0.2.5
    Affected: 0.2.6
    Affected: 0.2.7
    Affected: 0.2.8
    Affected: 0.2.9
    Affected: 0.2.10
    Affected: 0.2.11
    Affected: 0.2.12
    Affected: 0.2.13
    Create a notification for this product.
    Credits
    Max Alster-Caminer (Mantel) crem (VulDB User) crem (VulDB User)
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-11489",
                    "options": [
                      {
                        "Exploitation": "poc"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-10-08T18:30:58.825762Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-10-08T18:31:28.150Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "DesktopCommanderMCP",
              "vendor": "wonderwhy-er",
              "versions": [
                {
                  "status": "affected",
                  "version": "0.2.0"
                },
                {
                  "status": "affected",
                  "version": "0.2.1"
                },
                {
                  "status": "affected",
                  "version": "0.2.2"
                },
                {
                  "status": "affected",
                  "version": "0.2.3"
                },
                {
                  "status": "affected",
                  "version": "0.2.4"
                },
                {
                  "status": "affected",
                  "version": "0.2.5"
                },
                {
                  "status": "affected",
                  "version": "0.2.6"
                },
                {
                  "status": "affected",
                  "version": "0.2.7"
                },
                {
                  "status": "affected",
                  "version": "0.2.8"
                },
                {
                  "status": "affected",
                  "version": "0.2.9"
                },
                {
                  "status": "affected",
                  "version": "0.2.10"
                },
                {
                  "status": "affected",
                  "version": "0.2.11"
                },
                {
                  "status": "affected",
                  "version": "0.2.12"
                },
                {
                  "status": "affected",
                  "version": "0.2.13"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Max Alster-Caminer (Mantel)"
            },
            {
              "lang": "en",
              "type": "reporter",
              "value": "crem (VulDB User)"
            },
            {
              "lang": "en",
              "type": "analyst",
              "value": "crem (VulDB User)"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A security vulnerability has been detected in wonderwhy-er DesktopCommanderMCP up to 0.2.13. This vulnerability affects the function isPathAllowed of the file src/tools/filesystem.ts. The manipulation leads to symlink following. The attack can only be performed from a local environment. The attack\u0027s complexity is rated as high. It is stated that the exploitability is difficult. The exploit has been disclosed publicly and may be used. The vendor explains: \"Our restriction features are designed as guardrails for LLMs to help them stay closer to what users want, rather than hardened security boundaries. (...) For users where security is a top priority, we continue to recommend using Desktop Commander with Docker, which provides actual isolation. (...) We\u0027ll keep this issue open for future consideration if we receive more user demand for improved restrictions.\" This vulnerability only affects products that are no longer supported by the maintainer."
            },
            {
              "lang": "de",
              "value": "In wonderwhy-er DesktopCommanderMCP up to 0.2.13 wurde eine Schwachstelle gefunden. Hiervon betroffen ist die Funktion isPathAllowed der Datei src/tools/filesystem.ts. Mittels Manipulieren mit unbekannten Daten kann eine symlink following-Schwachstelle ausgenutzt werden. Der Angriff muss lokal erfolgen. Das Durchf\u00fchren eines Angriffs ist mit einer relativ hohen Komplexit\u00e4t verbunden. Sie gilt als schwierig auszunutzen. Der Exploit wurde der \u00d6ffentlichkeit bekannt gemacht und k\u00f6nnte verwendet werden."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "baseScore": 2,
                "baseSeverity": "LOW",
                "vectorString": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
                "version": "4.0"
              }
            },
            {
              "cvssV3_1": {
                "baseScore": 4.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.1"
              }
            },
            {
              "cvssV3_0": {
                "baseScore": 4.5,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:C",
                "version": "3.0"
              }
            },
            {
              "cvssV2_0": {
                "baseScore": 3.5,
                "vectorString": "AV:L/AC:H/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:C",
                "version": "2.0"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-61",
                  "description": "Symlink Following",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "Link Following",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-10-23T04:26:22.910Z",
            "orgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
            "shortName": "VulDB"
          },
          "references": [
            {
              "name": "VDB-327606 | wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink",
              "tags": [
                "vdb-entry",
                "technical-description"
              ],
              "url": "https://vuldb.com/?id.327606"
            },
            {
              "name": "VDB-327606 | CTI Indicators (IOB, IOC, IOA)",
              "tags": [
                "signature",
                "permissions-required"
              ],
              "url": "https://vuldb.com/?ctiid.327606"
            },
            {
              "name": "Submit #668004 | wonderwhy-er DesktopCommanderMCP 0.2.13  wonderwhy-er",
              "tags": [
                "third-party-advisory"
              ],
              "url": "https://vuldb.com/?submit.668004"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/219"
            },
            {
              "tags": [
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/219#issuecomment-3214114903"
            },
            {
              "tags": [
                "exploit",
                "issue-tracking"
              ],
              "url": "https://github.com/wonderwhy-er/DesktopCommanderMCP/issues/219#issue-3343862329"
            }
          ],
          "tags": [
            "unsupported-when-assigned"
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-10-08T00:00:00.000Z",
              "value": "Advisory disclosed"
            },
            {
              "lang": "en",
              "time": "2025-10-08T02:00:00.000Z",
              "value": "VulDB entry created"
            },
            {
              "lang": "en",
              "time": "2025-10-23T06:28:27.000Z",
              "value": "VulDB entry last update"
            }
          ],
          "title": "wonderwhy-er DesktopCommanderMCP filesystem.ts isPathAllowed symlink"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5",
        "assignerShortName": "VulDB",
        "cveId": "CVE-2025-11489",
        "datePublished": "2025-10-08T18:02:11.266Z",
        "dateReserved": "2025-10-08T10:41:17.305Z",
        "dateUpdated": "2025-10-23T04:26:22.910Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }