CVE-2026-26029 HIGH

CVE-2026-26029: sf-mcp-server has a Command Injection in query_records tool due to unsafe use of child_process.exec

Vendor Akutishevsky
Product sf-mcp-server
Weakness CWE-78
Published February 11, 2026
Last update February 12, 2026
View on NVD All CVEs

CVSS base score

7.5/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

sf-mcp-server is an implementation of Salesforce MCP server for Claude for Desktop. A command injection vulnerability exists in sf-mcp-server due to unsafe use of child_process.exec when constructing Salesforce CLI commands with user-controlled input. Successful exploitation allows attackers to execute arbitrary shell commands with the privileges of the MCP server process.

Key dates

02Disclosure timeline

February 11, 2026 CVE published
February 12, 2026 Record updated

Related vulnerabilities

04Related CVE

CVE-2023-34281 D-Link DIR-2150 GetFirmwareStatus Target Command Injection Remote Code Execution Vulnerability CVE-2026-41900 OpenLearnX has Critical Remote Code Execution Through Python Sandbox Escape via Code Execution Environment CVE-2026-6113 Totolink A7100RU CGI cstecgi.cgi setTtyServiceCfg os command injection CVE-2026-22179 OpenClaw < 2026.2.22 - Allowlist Bypass via Command Substitution in system.run CVE-2021-1557 Cisco DNA Spaces Connector Privilege Escalation Vulnerabilities