Is there a public PoC exploit available for CVE-2025-11285?

Yes, a public proof-of-concept exploit is available for CVE-2025-11285. Prioritise patching immediately. EPSS: 0.3%.

MCPHub CVE-2025-11285

Q: What is the CVSS score of CVE-2025-11285?

CVE-2025-11285 has a CVSS 4.0 base score of 2.1 (Low). CVSS vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X. EPSS exploitation probability: 0.3%.

LOW

Command Injection (CWE-77)

2025-10-05 cna@vuldb.com

Command Injection Mcphub

2.1

CVSS 4.0 · NVD

Severity by source

NVD PRIMARY

2.1 LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Lifecycle Timeline

Analysis Generated

Apr 29, 2026 - 01:51 vuln.today

DescriptionCVE.org

A vulnerability was found in samanhappy MCPHub up to 0.9.10. Affected by this issue is some unknown functionality of the file src/controllers/serverController.ts. The manipulation of the argument command/args results in os command injection. The attack can be launched remotely. The exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.

AnalysisAI

OS command injection in MCPHub up to version 0.9.10 allows authenticated remote attackers to execute arbitrary system commands via manipulation of command/args parameters in serverController.ts. The vulnerability has a low CVSS score (2.1) due to requirement for authenticated access and limited scope impact, but carries elevated real-world risk given publicly available exploit code and vendor non-responsiveness. EPSS score of 0.25% suggests limited current exploitation activity despite POC availability.

Technical ContextAI

MCPHub is a Node.js-based application framework where the vulnerability resides in src/controllers/serverController.ts. The flaw is a classic CWE-77 improper neutralization of special elements used in a command (command injection), occurring when user-supplied input in the command or args parameters is passed unsanitized to system command execution functions. This likely involves Node.js child_process module functions (exec, execFile, spawn) without proper input validation or parameterization. The CPE identifies the affected product as mcphubx:mcphub across all versions up to 0.9.10.

RemediationAI

Upgrade MCPHub to a version newer than 0.9.10 if available from the vendor; however, vendor non-responsiveness suggests patched versions may not be forthcoming. As immediate mitigation, implement input validation and sanitization for all command and args parameters in serverController.ts by using parameterized/array-based command execution (e.g., spawn() with array arguments rather than exec() with string concatenation) and whitelist-validation of allowed command values. Network segmentation restricting access to MCPHub's command endpoints to trusted internal networks only will reduce attack surface. Disable or restrict authentication mechanisms if possible, or enforce multi-factor authentication to raise the barrier for authenticated access. Monitor system command execution logs for suspicious patterns. If the application permits, disable the vulnerable command execution functionality entirely if not critical to operations.

CVE-2025-11285 vulnerability details – vuln.today

Back