Seven MCP CVEs in One Month: The Complete Map

When I published my analysis of the eval() epidemic in MCP servers earlier today, I had identified three CVEs. By the time I finished that piece, the number had already grown. There are seven. All published in February 2026. All remote code execution. All the same root cause: user-controlled input reaching dangerous execution functions without sanitization. Here's the complete map. The Seven CVEs CVE Server Vulnerable Function Root Cause CVE-2026-0755 gemini-mcp-tool execAsync Shell metacharacter injection CVE-2026-1977 mcp-vegalite-server eval(vegalite_specification) Python eval on user input CVE-2026-2008 fermat-mcp eqn_chart equations Python eval on equation strings CVE-2026-2131 HarmonyOS-mcp-server input_text OS command injection CVE-2026-2178 xcode-mcp-server run_lldb Command injection in debugger CVE-2026-25546 godot-mcp executeOperation projectPath exec() with unsanitized path CVE-2026-26029 sf-mcp-server child_process.exec Shell injection in Salesforce MCP Seven servers. Seven

Seven MCP CVEs in One Month: The Complete Map

Related Articles

Mutable, Immutable… everything is an object!

PS6 Price Could Cross $1,000 — And RAM Is a Big Reason Why

You’re using Claude WRONG (almost everyone is)

Dependency Injection in iOS

zxing Decoder Online|2026

Related Articles

News
Mutable, Immutable… everything is an object!
Medium Programming • 23h ago

News
PS6 Price Could Cross $1,000 — And RAM Is a Big Reason Why
Medium Programming • 23h ago

News
You’re using Claude WRONG (almost everyone is)
Medium Programming • 23h ago

News
Dependency Injection in iOS
Medium Programming • 1d ago

News
zxing Decoder Online|2026
Medium Programming • 1d ago