CVE-2026-35394

Name of the Vulnerable Software and Affected Versions Mobile Next versions prior to 0.0.50

Description The mobile open url tool in Mobile Next passes user-supplied URLs directly to Android's intent system without scheme validation, potentially allowing execution of arbitrary Android intents, including USSD codes, phone calls, SMS messages, and content provider access. This could allow an attacker, via prompt injection, to execute dangerous intents on a connected mobile device. The vulnerability is exploitable through malicious documents or websites that inject instructions into an AI agent controlling the MCP server. An attacker could execute USSD codes, initiate phone calls to premium rate numbers, draft SMS messages with attacker-controlled content, and access content providers like contacts, SMS, and call logs.

Recommendations Upgrade to version 0.0.50 or later. Users requiring other URL schemes can set MOBILEMCP ALLOW UNSAFE URLS=1.