CVE-2026-30617

Name of the Vulnerable Software and Affected Versions LangChain-ChatChat version 0.3.1

Description An issue exists in the MCP STDIO server configuration and execution handling. A remote attacker can access the publicly exposed MCP management interface to configure an MCP STDIO server using attacker-controlled commands and arguments. When the MCP server is started and MCP is enabled for agent execution, subsequent agent activity triggers the execution of arbitrary commands within the context of the LangChain-ChatChat service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.