CVE-2025-66404

Name of the Vulnerable Software and Affected Versions MCP Server Kubernetes versions prior to 2.9.8

Description The MCP Server Kubernetes software contains a security issue in the exec in pod tool. The tool improperly handles user-provided commands in string format, passing them directly to shell interpretation (sh -c) without validation. This allows for the interpretation of shell metacharacters, potentially leading to command injection or prompt injection attacks where AI agents could execute commands without explicit user intent.

Recommendations Update to version 2.9.8 or later.