Vulnerability Details CVE-2025-61492
A command injection vulnerability in the execute_command function of terminal-controller-mcp 0.1.7 allows attackers to execute arbitrary commands via a crafted input.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 69.4%
CVSS Severity
CVSS v3 Score 10.0
References
Products affected by CVE-2025-61492
-
cpe:2.3:a:gongrzhe:terminal-controller-mcp:0.1.7