CVE-2026-30625CRITICAL 9.8EPSS p57.5%

CVE-2026-30625CVE-2026-30625

Description

Upsonic 0.71.6 contains a remote code execution vulnerability in its MCP server/task creation functionality. The application allows users to define MCP tasks with arbitrary command and args values. Although an allowlist exists, certain allowed commands (npm, npx) accept argument flags that enable execution of arbitrary OS commands. Maliciously crafted MCP tasks may lead to remote code execution with the privileges of the Upsonic process. In version 0.72.0 Upsonic added a warning about using Stdio servers being able to execute commands directly on the machine.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.97% probability of exploitation · percentile 57.5% · 2026-06-18T12:00:27Z
Published2026-04-15
Last modified2026-04-27

Underlying weaknesses· 1

CWE-77

References

  1. https://github.com/Upsonic/Upsonic/commit/855053fce0662227d9246268ff4a0844b481a305
  2. https://www.ox.security/blog/mcp-supply-chain-advisory-rce-vulnerabilities-across-the-ai-ecosystem/

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Special Elements used in a Command ('Command Injection')cwe-770%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-0773
CVE
CVE-2025-6278
CVE
CVE-2025-61492
CVE
CVE-2025-63706
CVE
CVE-2025-6279
CVE
CVE-2025-66562
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.