CVE-2025-9262 – @wong2/mcp-cli

Package

Manager: npm
Name: @wong2/mcp-cli
Vulnerable Version: >=0 <=1.13.0

Severity

Level: Low

CVSS v3.1: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

CVSS v4.0: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

EPSS: 0.01914 pctl0.82602

Details

wong2 mcp-cli Command Injection Vulnerability A flaw has been found in wong2 mcp-cli 1.13.0. Affected is the function redirectToAuthorization of the file /src/oauth/provider.js of the component oAuth Handler. This manipulation causes os command injection. The attack may be initiated remotely. The attack is considered to have high complexity. The exploitability is told to be difficult. The exploit has been published and may be used. This issue has been patched via commit 3562966.

Metadata

Created: 2025-08-21T00:30:20Z
Modified: 2025-08-21T14:52:32Z
Source: https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/08/GHSA-p6rm-483j-37jf/GHSA-p6rm-483j-37jf.json
CWE IDs: ["CWE-77"]
Alternative ID: GHSA-p6rm-483j-37jf
Finding: F422
Auto approve: 1