CVE-2026-25546

Description

### Impact A Command Injection vulnerability in godot-mcp allows remote code execution. The `executeOperation` function passed user-controlled input (e.g., `projectPath`) directly to `exec()`, which spawns a shell. An attacker could inject shell metacharacters like `$(command)` or `&calc` to execute arbitrary commands with the privileges of the MCP server process. This affects any tool that accepts `projectPath`, including `create_scene`, `add_node`, `load_sprite`, and others. ### Patches Fixed in version 0.1.1 by switching from `exec()` to `execFile()`, which does not invoke a shell. ### Workarounds None. Users should upgrade immediately. ### Resources - https://github.com/Coding-Solo/godot-mcp/issues/64 - https://github.com/Coding-Solo/godot-mcp/pull/67

How to fix CVE-2026-25546

To remediate CVE-2026-25546, upgrade the affected package to a fixed version below.

• —upgrade to 0.1.1 or later

Is CVE-2026-25546 being exploited?

Low — EPSS is 0.0%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

• from 0, < 0.1.1

CVSS scores

References (6)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2026-25546
• PATCHgithub.com/Coding-Solo/godot-mcp
• WEBgithub.com/Coding-Solo/godot-mcp/commit/21c785d923cfdb471ea60323c13807d62dfecc5a
• WEBgithub.com/Coding-Solo/godot-mcp/issues/64
• WEB