{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-7319", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-04-28T13:42:01.353Z", "datePublished": "2026-04-28T21:00:18.252Z", "dateUpdated": "2026-04-28T21:00:18.252Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-04-28T21:00:18.252Z"}, "title": "elinsky execution-system-mcp add_action Tool server.py _get_context_file_path path traversal", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-22", "lang": "en", "description": "Path Traversal"}]}], "affected": [{"vendor": "elinsky", "product": "execution-system-mcp", "versions": [{"version": "0.1.0", "status": "affected"}], "modules": ["add_action Tool"]}], "descriptions": [{"lang": "en", "value": "A flaw has been found in elinsky execution-system-mcp 0.1.0. The impacted element is the function _get_context_file_path of the file src/execution_system_mcp/server.py of the component add_action Tool. This manipulation of the argument context causes path traversal. The attack can be initiated remotely. The exploit has been published and may be used."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 7.3, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R", "baseSeverity": "HIGH"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 7.3, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R", "baseSeverity": "HIGH"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"}}], "timeline": [{"time": "2026-04-28T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-04-28T02:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-04-28T15:47:06.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "LittleW (VulDB User)", "type": "reporter"}], "references": [{"url": "https://vuldb.com/vuln/359972", "name": "VDB-359972 | elinsky execution-system-mcp add_action Tool server.py _get_context_file_path path traversal", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/359972/cti", "name": "VDB-359972 | CTI Indicators (IOB, IOC, TTP, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://vuldb.com/submit/803085", "name": "Submit #803085 | elinsky execution-system-mcp 0.1.0 Path Traversal", "tags": ["third-party-advisory"]}, {"url": "https://github.com/elinsky/execution-system-mcp/issues/1", "tags": ["exploit", "issue-tracking"]}, {"url": "https://github.com/elinsky/execution-system-mcp/", "tags": ["product"]}]}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A flaw has been found in elinsky execution-system-mcp 0.1.0. The impacted element is the function _get_context_file_path of the file src/execution_system_mcp/server.py of the component add_action Tool. This manipulation of the argument context causes path traversal. The attack can be initiated remotely. The exploit has been published and may be used."}], "id": "CVE-2026-7319", "lastModified": "2026-04-29T01:00:01.613", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "cna@vuldb.com", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.3, "baseSeverity": "HIGH", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.4, "source": "cna@vuldb.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "PROOF_OF_CONCEPT", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "LOW", "vulnIntegrityImpact": "LOW", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "cna@vuldb.com", "type": "Secondary"}]}, "published": "2026-04-28T22:16:52.050", "references": [{"source": "cna@vuldb.com", "url": "https://github.com/elinsky/execution-system-mcp/"}, {"source": "cna@vuldb.com", "url": "https://github.com/elinsky/execution-system-mcp/issues/1"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/submit/803085"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/vuln/359972"}, {"source": "cna@vuldb.com", "url": "https://vuldb.com/vuln/359972/cti"}], "sourceIdentifier": "cna@vuldb.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "cna@vuldb.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-29T03:35:48.711533+00:00", "value": {"mitigation_remediation": ["Apply an updated version of execution-system-mcp that removes the unvalidated path resolution in _get_context_file_path.", "Restrict external access to the server by implementing firewall rules or network segmentation so that only trusted hosts can reach the add_action endpoint.", "Implement input validation to ensure that the context parameter does not contain directory traversal characters or paths that escape the intended root directory; enforce a whitelist of legitimate file locations."], "summary": {"action": "Patch", "impact": "Path Traversal"}, "threat_synthesis": {"affected_systems": "The flaw exists in elinsky execution-system-mcp version 0.1.0. Users running this version on any platform that exposes the server component are at risk until a patch is applied or the vulnerability is mitigated.", "description_and_impact": "The vulnerability is a path traversal flaw in the _get_context_file_path function of the add_action Tool in elinsky execution-system-mcp. By manipulating the context argument, an attacker can cause the server to resolve file paths that escape the intended directory, enabling access to files outside the designated context. The flaw allows reading of sensitive files or potentially triggering unintended behavior, which directly impacts confidentiality and could serve as a foothold for further exploitation. Based on the description, it is inferred that the attack results in unauthorized file access.", "risk_and_exploitability": "The CVSS score of 6.9 indicates medium severity. Although an EPSS score is not available, the published exploit and the ability to initiate the attack remotely raise concern. The vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the attack vector is remote, likely through an HTTP interface that accepts the context argument, and no special authentication is required. Because the flaw permits arbitrary file access, an adversary could read privileged files, potentially leading to data leakage or further exploitation."}}}}, "created": "2026-04-29T03:45:25.916560+00:00", "updated": "2026-04-29T03:45:25.916592+00:00", "vendors": []}