CVE-2026-39417

Name of the Vulnerable Software and Affected Versions MaxKB versions prior to 2.8.0

Description A Remote Code Execution issue exists in the MCP node of the workflow engine. The system fails to properly validate user-supplied JSON when loading mcp servers, as the fix for a previous issue only restricted the referencing code path. Because the mcp source variable is optional, an attacker can bypass existing restrictions by omitting it or providing a non-referencing value. By sending a crafted JSON payload to the workflow creation API, an attacker can inject an MCP node configuration using stdio transport with arbitrary commands and arguments, leading to code execution when the workflow is triggered via chat.

Recommendations Update to version 2.8.0.