CVE Catalog

CVE-2025-65719

Critical
Published: Translated: NVD NIST

Summary

Version 1.1.1 of the Open Source Kubectl MCP Server contains a vulnerability that allows attackers to execute arbitrary code on a victim's system via user interaction with a crafted HTML page.

Risk Assessment

This vulnerability poses a significant security risk as it may lead to the compromise of the victim's system by malicious code.

Recommendation

It is recommended to update to the latest version of the Open Source Kubectl MCP Server and to avoid interacting with unknown HTML pages.

Original NVD description (English source)

An issue in Open Source Kubectl MCP Server v1.1.1 allows attackers to execute arbitrary code on a victim system via user interaction with a crafted HTML page.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS