{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0756", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "state": "PUBLISHED", "assignerShortName": "zdi", "dateReserved": "2026-01-08T22:49:27.448Z", "datePublished": "2026-01-23T03:26:22.906Z", "dateUpdated": "2026-01-23T19:33:45.238Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-01-23T03:26:22.906Z"}, "title": "github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability", "descriptions": [{"lang": "en", "value": "github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the handling of the create_issue parameter. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-27784."}], "affected": [{"vendor": "github-kanban-mcp-server", "product": "github-kanban-mcp-server", "versions": [{"version": "0.3.0", "status": "affected"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "type": "CWE"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-022/", "name": "ZDI-26-022", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-01-08T22:49:27.472Z", "datePublic": "2026-01-09T16:21:43.565Z", "source": {"lang": "en", "value": "Brandon Niemczyk & Peter Girnus (@gothburz) of Trend Zero Day Initiative"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-23T19:33:32.578032Z", "id": "CVE-2026-0756", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-23T19:33:45.238Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-0756", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-01-23T19:33:32.578032Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-23T19:33:39.380Z"}}], "cna": {"title": "github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability", "source": {"lang": "en", "value": "Brandon Niemczyk & Peter Girnus (@gothburz) of Trend Zero Day Initiative"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 9.8, "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "github-kanban-mcp-server", "product": "github-kanban-mcp-server", "versions": [{"status": "affected", "version": "0.3.0"}], "defaultStatus": "unknown"}], "datePublic": "2026-01-09T16:21:43.565Z", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-022/", "name": "ZDI-26-022", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-01-08T22:49:27.472Z", "descriptions": [{"lang": "en", "value": "github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the handling of the create_issue parameter. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-27784."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"}]}], "providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-01-23T03:26:22.906Z"}}}, "cveMetadata": {"cveId": "CVE-2026-0756", "state": "PUBLISHED", "dateUpdated": "2026-01-23T19:33:45.238Z", "dateReserved": "2026-01-08T22:49:27.448Z", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "datePublished": "2026-01-23T03:26:22.906Z", "assignerShortName": "zdi"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "github-kanban-mcp-server execAsync Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of github-kanban-mcp-server. Authentication is not required to exploit this vulnerability.\n\nThe specific flaw exists within the handling of the create_issue parameter. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-27784."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n de comandos y ejecuci\u00f3n remota de c\u00f3digo execAsync en github-kanban-mcp-server. Esta vulnerabilidad permite a atacantes remotos ejecutar c\u00f3digo arbitrario en instalaciones afectadas de github-kanban-mcp-server. La autenticaci\u00f3n no es requerida para explotar esta vulnerabilidad.\n\nLa falla espec\u00edfica existe en el manejo del par\u00e1metro create_issue. El problema resulta de la falta de validaci\u00f3n adecuada de una cadena proporcionada por el usuario antes de usarla para ejecutar una llamada al sistema. Un atacante puede aprovechar esta vulnerabilidad para ejecutar c\u00f3digo en el contexto de la cuenta de servicio. Fue ZDI-CAN-27784."}], "id": "CVE-2026-0756", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "zdi-disclosures@trendmicro.com", "type": "Secondary"}]}, "published": "2026-01-23T04:16:02.157", "references": [{"source": "zdi-disclosures@trendmicro.com", "url": "https://www.zerodayinitiative.com/advisories/ZDI-26-022/"}], "sourceIdentifier": "zdi-disclosures@trendmicro.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "zdi-disclosures@trendmicro.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T03:20:42.446616+00:00", "value": {"mitigation_remediation": ["Update github-kanban-mcp-server to the latest release that contains the command injection fix.", "If a patch is not yet available, block or restrict external access to the create_issue API endpoint, or otherwise limit unauthenticated users from reaching the vulnerable parameter.", "As a temporary measure, validate or escape the create_issue parameter on the server side to prevent arbitrary command execution until the official fix is applied."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The affected product is github-kanban-mcp-server. No specific version range is listed in the CVE record; therefore any installation of github-kanban-mcp-server that has not applied a vendor\u2011released fix is considered at risk.", "description_and_impact": "This vulnerability is a command injection flaw that occurs when the server processes the create_issue parameter without validating the supplied string. An attacker can send a specially crafted request to an affected instance, causing the service to execute arbitrary shell commands in the context of the service account. The flaw is pure injection; no privilege escalation is required beyond the service account\u2019s permissions, but the impact is complete loss of confidentiality, integrity, and availability for that server, as attackers can run any code they wish.", "risk_and_exploitability": "The CVSS score of 9.8 indicates maximum severity, while the EPSS score of less than 1% suggests that exploitation attempts are expected to be rare at present. The vulnerability is not listed in CISA's KEV catalog, so there is no evidence of widespread or active exploitation. An attacker does not need prior authentication; the flaw can be leveraged from the internet or an internal network if the create_issue endpoint is exposed. The attack path is simple: send a crafted create_issue request that injects shell commands, and the server executes them with the privileges of the service account."}}}}, "created": "2026-01-23T10:26:28.816799+00:00", "updated": "2026-04-18T03:30:25.907961+00:00", "vendors": ["github-kanban-mcp-server", "github-kanban-mcp-server$PRODUCT$github-kanban-mcp-server"]}