ByteOS Network

NVD Vulnerability Details :

CVE-2025-35028

Awaiting Analysis

Source-cve@takeonme.org

Published At-30 Nov, 2025 | 22:15

Updated At-01 Dec, 2025 | 17:15

By providing a command-line argument starting with a semi-colon ; to an API endpoint created by the EnhancedCommandExecutor class of the HexStrike AI MCP server, the resultant composed command is executed directly in the context of the MCP server’s normal privilege; typically, this is root. There is no attempt to sanitize these arguments in the default configuration of this MCP server at the affected version (as of commit 2f3a5512 in September of 2025).

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	9.1	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Type: Secondary

Version: 3.1

Base score: 9.1

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Weaknesses

CWE ID	Type	Source
CWE-78	Secondary	cve@takeonme.org

CWE ID: CWE-78

Type: Secondary

Source: cve@takeonme.org

References

Hyperlink	Source	Resource
https://github.com/0x4m4/hexstrike-ai/issues/115	cve@takeonme.org	N/A
https://takeonme.org/gcves/GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011	cve@takeonme.org	N/A

Hyperlink: https://github.com/0x4m4/hexstrike-ai/issues/115

Source: cve@takeonme.org

Resource: N/A

Hyperlink: https://takeonme.org/gcves/GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011

Source: cve@takeonme.org

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History