PT-2026-23710 · Anthropic · Anthropic Git Mcp Server
Matthias Gerstner
·
Published
2026-03-06
·
Updated
2026-05-13
·
CVE-2026-25710
CVSS v4.0
7.0
High
| Vector | AV:L/AC:L/AT:N/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Anthropic Git MCP server (affected versions not specified)
Description
The Anthropic Git MCP server contains an argument injection flaw that allows for Remote Code Execution (RCE). The issue was identified in Anthropic’s own implementation of the Git MCP server. The potential impact extends to numerous community-run MCP servers that may lack security audits. The flaw allows an attacker to inject arguments, potentially leading to the execution of arbitrary code on the server.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Anthropic Git Mcp Server