CVE-2025-53372

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-53372
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-53372.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-53372
Aliases
Related
Published
2025-07-08T15:15:29Z
Modified
2025-07-09T14:02:42.178866Z
Summary
[none]
Details

node-code-sandbox-mcp is a Node.js–based Model Context Protocol server that spins up disposable Docker containers to execute arbitrary JavaScript. Prior to 1.3.0, a command injection vulnerability exists in the node-code-sandbox-mcp MCP Server. The vulnerability is caused by the unsanitized use of input parameters within a call to child_process.execSync, enabling an attacker to inject arbitrary system commands. Successful exploitation can lead to remote code execution under the server process's privileges on the host machine, bypassing the sandbox protection of running code inside docker. This vulnerability is fixed in 1.3.0.

References

Affected packages

Git / github.com/alfonsograziano/node-code-sandbox-mcp

Affected ranges

Type
GIT
Repo
https://github.com/alfonsograziano/node-code-sandbox-mcp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
e461a74ecb189b268daac0d972c467b49b2abdd2

Affected versions

v1.*

v1.0.0
v1.0.2
v1.1.0
v1.2.0