isaacwasserman mcp-vegalite-server Code Injection Vulnerability
Vulnerability
A code injection vulnerability has been identified in isaacwasserman mcp-vegalite-server versions prior to 16aefed598b8cd897b78e99b907f6e2984572c61. The issue arises in the visualize_data component, specifically within the eval function, where the vegalite_specification argument can be manipulated to execute arbitrary code. This vulnerability can be exploited remotely.
Impact
Exploitation of this vulnerability allows for arbitrary code execution on the server where the MCP Vega-Lite server is running. The impact may vary depending on the deployment model of the MCP service.
Reproduction
To reproduce this vulnerability, use the visualize_data tool and provide a payload in the vegalite_specification parameter that includes malicious code, such as a command to be executed. This can be done by sending a request to the server with the crafted vegalite_specification that exploits the eval function.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.