{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-0758", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "state": "PUBLISHED", "assignerShortName": "zdi", "dateReserved": "2026-01-08T22:49:35.684Z", "datePublished": "2026-01-23T03:28:03.939Z", "dateUpdated": "2026-01-23T19:31:34.636Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-01-23T03:28:03.939Z"}, "title": "mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability", "descriptions": [{"lang": "en", "value": "mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the shortcutName parameter. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-27910."}], "affected": [{"vendor": "mcp-server-siri-shortcuts", "product": "mcp-server-siri-shortcuts", "versions": [{"version": "49d67127ba8373300d0c9d94c059b4c873bf2ef8", "status": "affected"}], "defaultStatus": "unknown"}], "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')", "type": "CWE"}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-024/", "name": "ZDI-26-024", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-01-08T22:49:35.718Z", "datePublic": "2026-01-09T16:26:12.442Z", "source": {"lang": "en", "value": "Peter Girnus (@gothburz) and Brandon Niemczyk of Trend Zero Day Initiative"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-23T19:28:02.816490Z", "id": "CVE-2026-0758", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-23T19:31:34.636Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-0758", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-01-23T19:28:02.816490Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-23T19:31:29.945Z"}}], "cna": {"title": "mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability", "source": {"lang": "en", "value": "Peter Girnus (@gothburz) and Brandon Niemczyk of Trend Zero Day Initiative"}, "metrics": [{"format": "CVSS", "cvssV3_0": {"version": "3.0", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}}], "affected": [{"vendor": "mcp-server-siri-shortcuts", "product": "mcp-server-siri-shortcuts", "versions": [{"status": "affected", "version": "49d67127ba8373300d0c9d94c059b4c873bf2ef8"}], "defaultStatus": "unknown"}], "datePublic": "2026-01-09T16:26:12.442Z", "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-024/", "name": "ZDI-26-024", "tags": ["x_research-advisory"]}], "dateAssigned": "2026-01-08T22:49:35.718Z", "descriptions": [{"lang": "en", "value": "mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the shortcutName parameter. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-27910."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-78", "description": "CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')"}]}], "providerMetadata": {"orgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "shortName": "zdi", "dateUpdated": "2026-01-23T03:28:03.939Z"}}}, "cveMetadata": {"cveId": "CVE-2026-0758", "state": "PUBLISHED", "dateUpdated": "2026-01-23T19:31:34.636Z", "dateReserved": "2026-01-08T22:49:35.684Z", "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e", "datePublished": "2026-01-23T03:28:03.939Z", "assignerShortName": "zdi"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.\n\nThe specific flaw exists within the shortcutName parameter. The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code in the context of the service account. Was ZDI-CAN-27910."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n de comandos y escalada de privilegios shortcutName en mcp-server-siri-shortcuts. Esta vulnerabilidad permite a atacantes locales escalar privilegios en instalaciones afectadas de mcp-server-siri-shortcuts. Un atacante debe primero obtener la capacidad de ejecutar c\u00f3digo con privilegios bajos en el sistema objetivo para explotar esta vulnerabilidad.\n\nLa falla espec\u00edfica existe dentro del par\u00e1metro shortcutName. El problema resulta de la falta de validaci\u00f3n adecuada de una cadena proporcionada por el usuario antes de usarla para ejecutar una llamada al sistema. Un atacante puede aprovechar esta vulnerabilidad para escalar privilegios y ejecutar c\u00f3digo arbitrario en el contexto de la cuenta de servicio. Fue ZDI-CAN-27910."}], "id": "CVE-2026-0758", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "zdi-disclosures@trendmicro.com", "type": "Secondary"}]}, "published": "2026-01-23T04:16:02.433", "references": [{"source": "zdi-disclosures@trendmicro.com", "url": "https://www.zerodayinitiative.com/advisories/ZDI-26-024/"}], "sourceIdentifier": "zdi-disclosures@trendmicro.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-78"}], "source": "zdi-disclosures@trendmicro.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T03:20:00.941206+00:00", "value": {"mitigation_remediation": ["Apply the vendor\u2019s official patch or update to the latest version of mcp-server-siri-shortcuts.", "Restrict or disable the shortcutName configuration for non\u2011administrator accounts to block local injection attempts.", "Implement input validation or sanitization on the shortcutName parameter to prevent execution of arbitrary system calls."], "summary": {"action": "Patch Immediately", "impact": "Privilege Escalation via Command Injection"}, "threat_synthesis": {"affected_systems": "The affected product is mcp-server-siri-shortcuts. Version details are not specified in the available data, so any installation of this service that has not been updated to include the vendor patch is potentially vulnerable.", "description_and_impact": "The flaw is a local command injection defect in the shortcutName parameter of the mcp-server-siri-shortcuts service. Unsanitized user input is passed to a system call, enabling an attacker who can run code with limited privileges to elevate those privileges and execute arbitrary code as the service account. The vulnerability provides direct compromise of confidentiality, integrity and availability for the overall system.", "risk_and_exploitability": "The CVSS score of 7.8 classifies the defect as High severity, yet the EPSS score of less than 1% indicates a very low likelihood of exploitation in the wild. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires an attacker to first execute low-privileged code on the same machine\u2014a prerequisite that confines the attack to a local threat model. Once that foothold is achieved, the attacker can inject a malicious shortcutName string to trigger the privileged system call and gain elevated rights."}}}}, "created": "2026-01-23T10:26:58.288686+00:00", "updated": "2026-04-18T03:30:25.906625+00:00", "vendors": ["mcp-server-siri-shortcuts", "mcp-server-siri-shortcuts$PRODUCT$mcp-server-siri-shortcuts"]}