CyberIntel ⬡ News
★ Saved ◆ Cyber Reads
← Back ⬡ Vulnerabilities & CVEs May 31, 2026

CVE-2026-10279 | hiraishikentaro wezterm-mcp 0.1.0 switch_pane/write_to_specific_pane src/wezterm_executor.ts request.params.arguments.pane_id os command injection

VulDB Archived May 31, 2026 ! Full text unavailable

A vulnerability, which was classified as critical , has been found in hiraishikentaro wezterm-mcp 0.1.0 . The affected element is an unknown function of the file src/wezterm_executor.ts of the component switch_pane/write_to_specific_pane . The manipulation of the argument request.params.arguments.pane_id leads to os command injection. This vulnerability is documented as CVE-2026-10279 . The attack can be initiated remotely. Additionally, an exploit exists. The project was informed of the problem

Full text unavailable — view original
✦ AI Summary · Claude Sonnet


    Full text unavailable.
    Open original ↗
    💬 Team Notes
    Article Info
    Source
    VulDB
    Category
    ⬡ Vulnerabilities & CVEs
    Published
    May 31, 2026
    Archived
    May 31, 2026
    Full Text
    ✗ Not available
    Open Original ↗