Abhiphile Fermat-MCP Code Injection Vulnerability in EQN Chart Function
Vulnerability
A code injection vulnerability has been identified in Abhiphile Fermat-MCP versions prior to 47f11def1cd37e45dd060f30cdce346cbdbd6f0a. The issue arises in the EQN Chart function within the file EQN_Chart.PY. Manipulating the equations parameter allows for arbitrary code execution. This vulnerability can be exploited remotely, and a public exploit is available.
Impact
Exploitation of this vulnerability allows for arbitrary code execution on the server where Fermat-MCP is running. The impact varies based on the deployment model of the MCP service. In a local deployment without sandboxing, the injected code is executed with the current user's privileges. In a remote, single-tenant deployment, the vulnerability could lead to remote code execution on the server. However, in a multi-tenant SaaS environment, this could result in a critical cross-tenant compromise.
Reproduction
To reproduce this vulnerability, call the EQN Chart tool and provide a payload in the equations parameter that exploits the code injection flaw. The injected code will be executed on the server.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.