Vendor
critical
advisory
flyto-core Unauthenticated Command Execution via HTTP MCP `execute_module`
1 rule 2 TTPsflyto-core is vulnerable to unauthenticated command execution via its HTTP MCP endpoint (`POST /mcp`), allowing remote attackers to execute arbitrary OS commands with server privileges by invoking `sandbox.execute_shell` through JSON-RPC requests, potentially leading to full system compromise.
flyto-core 2.26.2
unauthenticated-rce
command-injection
web-application
ghsa
linux
1r
2t
high
advisory
flyto-core SSRF Bypass via IPv6 Transition Addresses (CWE-918)
3 TTPs 3 IOCsAn authenticated workflow author can bypass `flyto-core`'s Server-Side Request Forgery (SSRF) protection by crafting URLs with IPv6 transition addresses that embed private IPv4s, allowing for data exfiltration from internal services like cloud instance metadata.
flyto-core
ssrf
vulnerability
python
defense-evasion
3t
3i