A vulnerability marked as problematic has been reported in wonderwhy-er DesktopCommanderMCP up to 0.2.38 . This impacts an unknown function of the file src/search-manager.ts of the component start_search . Performing a manipulation of the argument SearchResult[] results in inefficient regular expression complexity. This vulnerability is cataloged as CVE-2026-10691 . It is possible to initiate the attack remotely. Furthermore, there is an exploit available. It is suggested to upgrade the affected