VDB

GCVE-110-OSM-2026-2497

GCVE-110-OSM-2026-2497
Advisory PublishedCVSS 8.8/10
Vulnetix · Advisory published April 15, 2026
Malicious package detected. Behaviors: code execution, network activity. Payload: mcp_proxy/caching.py Secondary files: ant_mcp_proxy_for_test-0.10.0.dist-info/METADATA Key findings: - Suspicious Domain in ant_mcp_proxy_for_test-0.10.0.dist-info/METADATA: "https://modelcontextprotocol.io" - Shell Command Execution in mcp_proxy/caching.py: "subprocess.run(" IOCs: - urls: http://example.io/sse, https://server.local/sse, https://modelcontextprotocol.io/docs/tools/inspector, https://server.local/sse\n, http://{mcp_settings.bind_host - domains: example.io, modelcontextprotocol.io, ai-mcp-storage.oss-cn-hangzhou.aliyuncs.com, daisydisk.app, server.local (+1 more) - payloadFileHash: a635b7f1c102e93ff20fb5e68ae954444d030f85d145f87e1c3abad8884742a1

Weaknesses (CWE)

CWE-506Embedded Malicious Code

Risk Scores

CVSS 3.1
8.8/10
High · CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersionsPlatforms
unknownant-mcp-proxy-for-test0.10.0 (affected)

References

advisory
vendor

Browse GCVE Records

72,664 records in the GCVE database · Updated July 15, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›