CVE-2026-7221
TencentCloudBase CloudBase-MCP open-url API Endpoint interactive-server.ts openUrl server-side request forgery
Vexday Risk Score
33Atenção
Decisão SSVC (CISA)
Attend
PoC disponível → acompanhar de perto
CVSS 6.9EPSS 0.3%KEV nãoPoC públicaNuclei —Metasploit —Patch referenciado
Ciclo de vida
28 abr 2026Publicada no NVD
Recomendação: Planejar correção próxima — já existe PoC pública.
A vulnerability was found in TencentCloudBase CloudBase-MCP up to 2.17.0. Affected is the function openUrl of the file mcp/src/interactive-server.ts of the component open-url API Endpoint. The manipulation of the argument req.body.url results in server-side request forgery. It is possible to launch the attack remotely. The exploit has been made public and could be used. Upgrading to version 2.17.1 is able to address this issue. The patch is identified as 3f678a1e7bd400cd76469d61024097d4920dc6b5. It is recommended to upgrade the affected component.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Produtos afetados
TencentCloudBase · CloudBase-MCPPoCs públicas encontradas — 1
cve_referencegithub.com/TencentCloudBase/CloudBase-MCP/issues/509não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Referências
https://github.com/TencentCloudBase/CloudBase-MCP/https://github.com/TencentCloudBase/CloudBase-MCP/commit/3f678a1e7bd400cd76469d61024097d4920dc6b5https://github.com/TencentCloudBase/CloudBase-MCP/issues/509https://github.com/TencentCloudBase/CloudBase-MCP/pull/510https://github.com/TencentCloudBase/CloudBase-MCP/releases/tag/v2.17.1https://vuldb.com/submit/802230https://vuldb.com/vuln/359821https://vuldb.com/vuln/359821/cti