Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
AAP MCP Server Log Injection Vulnerability - Unauthorized Access and Deception Possible
CVE-2026-6494
Summary
An attacker can send malicious input to the AAP MCP server, allowing them to hide or fake log entries. This could trick operators into running bad commands or visiting bad websites. Update the server to fix the issue.
Original title
A flaw was found in the AAP MCP server. An unauthenticated remote attacker can exploit a log injection vulnerability by sending specially crafted input to the `toolsetroute` parameter. This paramet...
Original description
A flaw was found in the AAP MCP server. An unauthenticated remote attacker can exploit a log injection vulnerability by sending specially crafted input to the `toolsetroute` parameter. This parameter is not properly sanitized before being written to logs, allowing the attacker to inject control characters such as newlines and ANSI escape sequences. This enables the attacker to obscure legitimate log entries and insert forged ones, which could facilitate social engineering attacks, potentially leading to an operator executing dangerous commands or visiting malicious URLs.
nvd CVSS3.1
5.3
Vulnerability type
CWE-117
Published: 17 Apr 2026 · Updated: 17 Apr 2026 · First seen: 17 Apr 2026