NVD HIGH: CVE-2026-6130 — A flaw has been found in chatboxai chatbox up to 1.20.0. This impacts the functi...

Sunday, April 12, 2026 at 10:16 PM UTC·Source: NIST NVD

Updated: Friday, April 24, 2026 at 06:06 PM UTC

Executive Summary

A flaw has been found in chatboxai chatbox up to 1.20.0. This impacts the function StdioClientTransport of the file src/main/mcp/ipc-stdio-transport.ts of the component Model Context Protocol Server Management System. Executing a manipulation of the argument args/env can lead to os command injection. The attack can be launched remotely. The exploit has been published and may be used. The project w

Analysis

Indicators of Compromise (1)

CVE (1)

CVE-2026-6130

NVD MITRE CVE

Source Attribution

Originally published by NIST NVD on Apr 12, 2026. Verified by: NIST.

Related Threats

MEDIUMAi

White House Chief of Staff to Meet With Anthropic CEO Over Its New AI Technology

A White House official said the administration is engaging with advanced AI labs about their models and the security of software. The post White House Chief of Staff to Meet With Anthropic CEO Over Its New AI Technology appeared first on SecurityWeek .

Apr 17, 2026SecurityWeek

MEDIUMAi

Anthropic’s Dario Amodei heads to White House amid hacking fears over Mythos

Ian Duncan and Cat Zakrzewski report: Anthropic chief executive Dario Amodei is set to meet White House Chief of Staff Susie Wiles on Friday, according to a person briefed on the plan, as the federal government races to understand the national security implications of a powerful new artificial intelligence model the company says it has... Source

Apr 17, 2026DataBreaches.net

LOWAi

Moody’s agentic workflows land on AWS Marketplace

Moody’s Corporation (NYSE: MCO) today announced that its Moody’s Agentic Solutions (MAS) workflows are now available in AWS Marketplace.

Apr 17, 2026Finextra