{"url":"http://public2.vulnerablecode.io/api/packages/981042?format=json","purl":"pkg:npm/%40mobilenext/mobile-mcp@0.0.14","type":"npm","namespace":"@mobilenext","name":"mobile-mcp","version":"0.0.14","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"0.0.50","latest_non_vulnerable_version":"0.0.50","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/71858?format=json","vulnerability_id":"VCID-qfje-7vgj-kffy","summary":"Mobile Next is an MCP server for mobile development and automation. Prior to 0.0.50, the mobile_open_url tool in mobile-mcp passes user-supplied URLs directly to Android's intent system without any scheme validation, allowing execution of arbitrary Android intents, including USSD codes, phone calls, SMS messages, and content provider access. This vulnerability is fixed in 0.0.50.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-35394","reference_id":"","reference_type":"","scores":[{"value":"0.00027","scoring_system":"epss","scoring_elements":"0.07989","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-35394"},{"reference_url":"https://github.com/mobile-next/mobile-mcp","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mobile-next/mobile-mcp"},{"reference_url":"https://github.com/mobile-next/mobile-mcp/pull/299","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mobile-next/mobile-mcp/pull/299"},{"reference_url":"https://github.com/mobile-next/mobile-mcp/releases/tag/0.0.50","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mobile-next/mobile-mcp/releases/tag/0.0.50"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35394","reference_id":"","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-35394"},{"reference_url":"https://github.com/advisories/GHSA-5qhv-x9j4-c3vm","reference_id":"GHSA-5qhv-x9j4-c3vm","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-5qhv-x9j4-c3vm"},{"reference_url":"https://github.com/mobile-next/mobile-mcp/security/advisories/GHSA-5qhv-x9j4-c3vm","reference_id":"GHSA-5qhv-x9j4-c3vm","reference_type":"","scores":[{"value":"8.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-04-07T14:52:14Z/"}],"url":"https://github.com/mobile-next/mobile-mcp/security/advisories/GHSA-5qhv-x9j4-c3vm"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/373251?format=json","purl":"pkg:npm/%40mobilenext/mobile-mcp@0.0.50","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/%2540mobilenext/mobile-mcp@0.0.50"}],"aliases":["CVE-2026-35394","GHSA-5qhv-x9j4-c3vm"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-qfje-7vgj-kffy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/77743?format=json","vulnerability_id":"VCID-z297-y9cc-9ffc","summary":"Mobile Next is an MCP server for mobile development and automation. Prior to version 0.0.49, the `@mobilenext/mobile-mcp` server contains a Path Traversal vulnerability in the `mobile_save_screenshot` and `mobile_start_screen_recording` tools. The `saveTo` and `output` parameters were passed directly to filesystem operations without validation, allowing an attacker to write files outside the intended workspace. Version 0.0.49 fixes the issue.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33989","reference_id":"","reference_type":"","scores":[{"value":"0.00018","scoring_system":"epss","scoring_elements":"0.04743","published_at":"2026-06-11T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2026-33989"},{"reference_url":"https://github.com/mobile-next/mobile-mcp","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/mobile-next/mobile-mcp"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33989","reference_id":"","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-33989"},{"reference_url":"https://github.com/mobile-next/mobile-mcp/releases/tag/0.0.49","reference_id":"0.0.49","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T15:46:47Z/"}],"url":"https://github.com/mobile-next/mobile-mcp/releases/tag/0.0.49"},{"reference_url":"https://github.com/mobile-next/mobile-mcp/commit/f5e32295903128c1e71cf915ae6c0b76c7b0153b","reference_id":"f5e32295903128c1e71cf915ae6c0b76c7b0153b","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T15:46:47Z/"}],"url":"https://github.com/mobile-next/mobile-mcp/commit/f5e32295903128c1e71cf915ae6c0b76c7b0153b"},{"reference_url":"https://github.com/advisories/GHSA-3p2m-h2v6-g9mx","reference_id":"GHSA-3p2m-h2v6-g9mx","reference_type":"","scores":[],"url":"https://github.com/advisories/GHSA-3p2m-h2v6-g9mx"},{"reference_url":"https://github.com/mobile-next/mobile-mcp/security/advisories/GHSA-3p2m-h2v6-g9mx","reference_id":"GHSA-3p2m-h2v6-g9mx","reference_type":"","scores":[{"value":"8.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2026-03-30T15:46:47Z/"}],"url":"https://github.com/mobile-next/mobile-mcp/security/advisories/GHSA-3p2m-h2v6-g9mx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/375163?format=json","purl":"pkg:npm/%40mobilenext/mobile-mcp@0.0.49","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-qfje-7vgj-kffy"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/%2540mobilenext/mobile-mcp@0.0.49"}],"aliases":["CVE-2026-33989","GHSA-3p2m-h2v6-g9mx"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-z297-y9cc-9ffc"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:npm/%2540mobilenext/mobile-mcp@0.0.14"}