CNNVD-202509-3986 Information

CNNVD ID

CNNVD-202509-3986

Related CVE

CVE-2025-59834

• CNNVD Published: 2025-09-25

Description (Chinese)

ADB MCP Server是Martin Arellano个人开发者的一个模型上下文协议服务器。 ADB MCP Server 0.1.0及之前版本存在安全漏洞，该漏洞源于MCP Server工具定义和实现中存在命令注入漏洞。

Description (English)

ADB MCP Server is a model context protocol server for Martin Arellano’s personal developer. There is a security loophole in the ADB MCP Server 0.1.0 and previous versions, which stems from the definition of the MCP Server tool and from the implementation of a command-in-force gap.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

LitexMedia

Published

2025-09-25

Last Modified

2026-02-24

References

https://github.com/srmorete/adb-mcp/blob/master/src/index.ts#L334-L355 https://github.com/srmorete/adb-mcp/commit/041729c0b25432df3199ff71b3163a307cf4c28c https://github.com/srmorete/adb-mcp/security/advisories/GHSA-54j7-grvr-9xwg

Patch

https://github.com/srmorete/adb-mcp