CVE-2026-6942 - radare2-mcp <=1.6.0 OS Command Injection via Shell Metacharacter Bypass
CVE ID :CVE-2026-6942 Published : April 23, 2026, 9:16 p.m. | 34 minutes ago Description :radare2-mcp version 1.6.0 and earlier contains an os command injection vulnerability that allows remote attackers to execute arbitrary commands by bypassing the command filter through shell metacharacters
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Anthropic CVP Run 3 — Does Claude's Safety Stack Scale Down to Haiku 4.5?
- [CYBER] DeFi bleeds $7B in a day after $290M exploit – Layer Zero calls it another Lazarus hit - MSN
- [CYBER] How to get near-perfect, deterministic accuracy from your AI agents
- [CYBER] Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—and Predates Stuxnet
- [CYBER] Are security workflows shifting from detection-first to validation-first?
- [CYBER] Hackers exploit file upload bug in Breeze Cache WordPress plugin