CVE-2025-12489 | evernote-mcp-server openBrowser command injection

A vulnerability was found in evernote-mcp-server. It has been rated as critical. This impacts the function openBrowser. This manipulation causes command injection.

This vulnerability is tracked as CVE-2025-12489. The attack is restricted to local execution. No exploit exists.

Applying a patch is the recommended action to fix this issue.VulDB Recent EntriesRead More