Skip to main content

xcode-mcp-server CVE-2026-7416

| EUVDEUVD-2026-26293 MEDIUM
OS Command Injection (CWE-78)
2026-04-29 VulDB
5.5
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
X

Lifecycle Timeline

7
PoC Detected
Apr 30, 2026 - 14:52 vuln.today
Public exploit code
Severity Changed
Apr 29, 2026 - 22:22 NVD
HIGH MEDIUM
CVSS changed
Apr 29, 2026 - 22:22 NVD
7.3 (HIGH) 5.5 (MEDIUM)
Analysis Generated
Apr 29, 2026 - 22:15 vuln.today
EUVD ID Assigned
Apr 29, 2026 - 22:00 euvd
EUVD-2026-26293
Analysis Generated
Apr 29, 2026 - 22:00 vuln.today
CVE Published
Apr 29, 2026 - 21:30 nvd
MEDIUM 5.5

DescriptionCVE.org

A vulnerability was found in PolarVista xcode-mcp-server 1.0.0. This issue affects the function build_project/run_tests of the file src/index.ts of the component MCP Interface. The manipulation of the argument Request results in os command injection. The attack may be launched remotely. The exploit has been made public and could be used. The project was informed of the problem early through an issue report but has not responded yet.

AnalysisAI

OS command injection in PolarVista xcode-mcp-server 1.0.0 allows remote unauthenticated attackers to execute arbitrary system commands via crafted MCP requests to the build_project or run_tests functions. The vulnerability stems from insufficient input validation in src/index.ts when processing Request parameters. A publicly available exploit code exists (GitHub), and the vendor has not responded to early vulnerability disclosure attempts, leaving users without an official patch. EPSS data not available, but public exploit combined with network-accessible attack vector (CVSS AV:N/AC:L/PR:N) indicates elevated real-world risk for exposed instances.

Technical ContextAI

The Model Context Protocol (MCP) server interface in xcode-mcp-server handles Xcode build automation requests. The vulnerability exists in the build_project and run_tests functions within src/index.ts, where user-controlled input from Request parameters is passed to operating system commands without proper sanitization or validation (CWE-78: OS Command Injection). This classic injection flaw allows attackers to break out of intended command context and execute arbitrary shell commands with the privileges of the MCP server process. The CPE identifier cpe:2.3:a:polarvista:xcode-mcp-server:*:*:*:*:*:*:*:* confirms PolarVista as the vendor. MCP servers typically run as services accepting network requests, which explains the network attack vector.

RemediationAI

No vendor-released patch identified at time of analysis-the project maintainer has not responded to vulnerability disclosure per GitHub issue #4. Users should immediately implement compensating controls: (1) Restrict network access to the MCP server interface using firewall rules or network segmentation to trusted IP ranges only, preventing remote exploitation while accepting reduced functionality for remote users; (2) Deploy a reverse proxy or API gateway with input validation/sanitization in front of the MCP server to filter Request parameters, though this requires understanding legitimate request formats and may break functionality; (3) Run the MCP server process under a restricted user account with minimal system privileges to limit command injection impact, though attackers still gain that user's access; (4) Monitor the project repository at https://github.com/PolarVista/Xcode-mcp-server/ for updates and consider migrating to alternative MCP server implementations if vendor remains unresponsive. For critical environments, discontinue use until official patch is available. VulDB tracking at https://vuldb.com/vuln/360145 and https://vuldb.com/vuln/360145/cti may provide update notifications.

Share

CVE-2026-7416 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy