Description

A command injection vulnerability in the minimal_wrapper.py component of kubectl-mcp-server v1.2.0 allows attackers to execute arbitrary commands via injecting arbitrary shell metacharacters.

INFO

Published Date :

2026-03-16T00:00:00.000Z

Last Modified :

2026-03-16T20:40:52.491Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-69902 vulnerability.

Vendors Products
Rohitg00
  • Kubectl-mcp-server
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-69902.

URL Resource
https://asec.ahnlab.com/ko/92922/ cve-icon cve-icon
https://github.com/rohitg00/kubectl-mcp-server cve-icon cve-icon
https://github.com/rohitg00/kubectl-mcp-server/blob/main/kubectl_mcp_tool/minimal_wrapper.py cve-icon cve-icon
https://pypi.org/project/kubectl-mcp-tool cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System