CVE-2025-11285
Published: 05 October 2025
Summary
CVE-2025-11285 is a low-severity Command Injection (CWE-77) vulnerability in Mcphubx Mcphub. Its CVSS base score is 2.1 (Low).
Operationally, exploitation aligns with the MITRE ATT&CK technique Command and Scripting Interpreter (T1059); ranked in the top 27.1% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and AC-6 (Least Privilege).
Deeper analysis
CVE-2025-11285 is an OS command injection vulnerability (CWE-77, CWE-78) in samanhappy MCPHub versions up to 0.9.10. The issue affects unknown functionality within the file src/controllers/serverController.ts, where manipulation of the command/args argument enables command injection.
The vulnerability allows remote exploitation (AV:N) with low attack complexity (AC:L) by users with low privileges (PR:L) and no user interaction (UI:N), resulting in unchanged scope (S:U). Successful attacks can achieve low impacts on confidentiality, integrity, and availability (C:L/I:L/A:L), as reflected in its CVSS v3.1 base score of 6.3.
References from VulDB and a GitHub issue (https://github.com/August829/YU1/issues/6) detail the vulnerability disclosure, noting that the vendor was contacted early but provided no response. No patches or specific mitigations are mentioned in the available advisories.
The exploit has been made public, increasing the risk of exploitation in affected environments.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-32246
Vulnerability details
A vulnerability was found in samanhappy MCPHub up to 0.9.10. Affected by this issue is some unknown functionality of the file src/controllers/serverController.ts. The manipulation of the argument command/args results in os command injection. The attack can be launched remotely. The…
more
exploit has been made public and could be used. The vendor was contacted early about this disclosure but did not respond in any way.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The OS command injection vulnerability (CWE-78) in MCPHub's serverController.ts enables remote arbitrary command execution via unsanitized command/args, mapping to T1059 (Command and Scripting Interpreter), T1190 (Exploit Public-Facing Application) for remote exploitation of the web/API service, and T1202 (Indirect Command Execution) as noted in the advisory.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly requires validation and sanitization of untrusted inputs such as the command/args argument in serverController.ts to block OS command injection.
Limits privileges of the MCPHub process so that any injected OS commands have minimal impact on confidentiality, integrity, and availability.
Restricts the set of allowed commands and functions that the serverController can invoke, reducing the attack surface for command/args manipulation.