CVE-2025-10619— Sequa MCP 操作系统命令注入漏洞

sequa-ai sequa-mcp OAuth Server Discovery node-oauth-client-provider.ts redirectToAuthorization os command injection

A vulnerability was detected in sequa-ai sequa-mcp up to 1.0.13. This affects the function redirectToAuthorization of the file src/helpers/node-oauth-client-provider.ts of the component OAuth Server Discovery. Performing manipulation results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and may be used. Upgrading to version 1.0.14 is able to mitigate this issue. The patch is named e569815854166db5f71c2e722408f8957fb9e804. It is recommended to upgrade the affected component. The vendor explains: "We only promote that mcp server with our own URLs that have a valid response, but yes if someone would use it with a non sequa url, this is a valid attack vector. We have released a new version (1.0.14) that fixes this and validates that only URLs can be opened."

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

Sequa MCP 操作系统命令注入漏洞

Sequa MCP是sequa.ai开源的一款MCP协议的入口点。 Sequa MCP 1.0.13及之前版本存在操作系统命令注入漏洞，该漏洞源于OAuth Server Discovery组件中src/helpers/node-oauth-client-provider.ts文件的redirectToAuthorization函数存在命令注入漏洞，可能导致远程命令执行。

N/A

N/A