CVE-2026-6118

MEDIUM 6.3

AstrBotDevs AstrBot MCP Endpoint tools.py add_mcp_server command injection

CVSS Score

6.3

EPSS Score

0.9%

EPSS Percentile

75th

A vulnerability was determined in AstrBotDevs AstrBot up to 4.22.1. Impacted is the function add_mcp_server of the file astrbot/dashboard/routes/tools.py of the component MCP Endpoint. This manipulation of the argument command causes command injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.

CWE	CWE-77 CWE-74
Vendor	astrbotdevs
Product	astrbot
Published	Apr 12, 2026
Last Updated	Apr 14, 2026

Stay Ahead of the Next One

Get instant alerts for astrbotdevs astrbot

Be the first to know when new medium vulnerabilities affecting astrbotdevs astrbot are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

AstrBotDevs / AstrBot

4.22.0 4.22.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

vuldb.com: https://vuldb.com/vuln/356978 vuldb.com: https://vuldb.com/vuln/356978/cti vuldb.com: https://vuldb.com/submit/792655 github.com: https://github.com/AstrBotDevs/AstrBot/issues/7169 github.com: https://github.com/AstrBotDevs/AstrBot/

Credits

🔍 Yu_Bao (VulDB User) VulDB CNA Team