Primary

Context

XixianLiang HarmonyOS-mcp-server Command Injection Vulnerability in Version 0.1.0

Vulnerability

A command injection vulnerability has been identified in XixianLiang HarmonyOS-mcp-server version 0.1.0. The issue arises in the 'input_text' function, where the 'text' parameter is improperly handled, allowing for arbitrary OS command execution. This vulnerability can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability allows for arbitrary command execution on the server where HarmonyOS-mcp-server is running. The impact varies based on the deployment model of the MCP service. In a local deployment without sandboxing, commands are executed with the current user's privileges. In a remote, multi-tenant SaaS environment, the vulnerability could lead to a critical cross-tenant compromise.

Reproduction

To reproduce this vulnerability, call the 'input_text' function with a 'text' parameter that includes a command injection payload, such as 'zzz&calc'. This can be done using the available public exploit.

Added: Feb 8, 2026, 3:19 AM

Updated: Feb 8, 2026, 3:19 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

2.6

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

8.7

remediation

0.0

relevance

2.6

threat

6.4

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

XixianLiang HarmonyOS-mcp-server Command Injection Vulnerability in Version 0.1.0

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating