top of page
perceptive_background_267k.jpg

A vulnerability was found in choieastsea simple-openstack-mcp up to 767b2f4a8154cca344344b9725537a58399e6036. The affected element is the function exec_openstac…

Published:

26 april 2026 om 22:00:00

Alert date:

27 april 2026 om 01:02:15

Source:

nvd.nist.gov

Click to open the original link from this advisory

Cloud & Virtualization, Web Technologies

A remote code execution vulnerability (CVE-2026-7066) was discovered in choieastsea simple-openstack-mcp project up to commit 767b2f4a8154cca344344b9725537a58399e6036. The vulnerability affects the exec_openstack function in server.py, allowing OS command injection attacks. The exploit can be launched remotely and has been made public. The project maintainer has not responded to the vulnerability report despite early notification through an issue report.

Technical details

Mitigation steps:

Affected products:

simple-openstack-mcp

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-7066
https://github.com/choieastsea/simple-openstack-mcp/
https://github.com/choieastsea/simple-openstack-mcp/issues/3
https://vuldb.com/submit/798622
https://vuldb.com/vuln/359641
https://vuldb.com/vuln/359641/cti

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page