Command Injection Vulnerability in Git MCP Server by Cyanheads
CVE-2025-53107

7.5HIGH

Key Information:

Vendor

Cyanheads

Status
Git-mcp-server
Vendor
CVE Published:
1 July 2025

What is CVE-2025-53107?

The Git MCP Server prior to version 2.1.5 contains a command injection vulnerability due to the unsanitized use of input parameters in system command executions. This flaw allows attackers to inject arbitrary commands leading to potential remote code execution with server privileges. The server's method of constructing and executing shell commands with unvalidated user input poses a risk of injection, particularly through shell metacharacters. Moreover, an MCP Client could exploit this vulnerability by indirectly prompting the server to perform unintended actions, such as reading git logs. The issue has been resolved in version 2.1.5, and users are urged to update to safeguard against possible exploitation.

Affected Version(s)

git-mcp-server < 2.1.5

References

https://github.com/cyanheads/git-mcp-server/security/advi...
x_refsource_CONFIRM
https://github.com/cyanheads/git-mcp-server/commit/0dbd69...
x_refsource_MISC
https://github.com/cyanheads/git-mcp-server/releases/tag/...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-53107 : Command Injection Vulnerability in Git MCP Server by Cyanheads