CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-31040

A vulnerability was identified in stata-mcp prior to v1.13.0 where insufficient validation of user-supplied Stata do-file content can lead to command execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/SepineTam/stata-mcp/commit/52413ce
https://github.com/SepineTam/stata-mcp/issues/20
https://github.com/SepineTam/stata-mcp/pull/21
https://github.com/SepineTam/stata-mcp/releases/tag/v1.13.0
https://github.com/SepineTam/stata-mcp/issues/20

Products affected by CVE-2026-31040

Statamcp » Stata-Mcp » Version: Any

cpe:2.3:a:statamcp:stata-mcp:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-31040

Products

Pricing

Contact Us