CVE-2026-7064 | AgentDeskAI browser-tools-mcp up to 1.2.0 browser-connector.ts os command injection (Issue 232)

A vulnerability was found in AgentDeskAI browser-tools-mcp up to 1.2.0. It has been declared as critical. This issue affects some unknown processing of the file browser-tools-server/browser-connector.ts. Executing a manipulation can lead to os command injection.

This vulnerability appears as CVE-2026-7064. The attack may be performed from remote. In addition, an exploit is available.

The project was informed of the problem early through an issue report but has not responded yet.VulDB Recent EntriesRead More