CVE-2026-31040

UNKNOWN NVD

CVSS Score 0

Severity UNKNOWN

Published Apr 08, 2026

Vendor unknown

Description

A vulnerability was identified in stata-mcp prior to v1.13.0 where insufficient validation of user-supplied Stata do-file content can lead to command execution.

References

https://github.com/SepineTam/stata-mcp/commit/52413ce
https://github.com/SepineTam/stata-mcp/issues/20
https://github.com/SepineTam/stata-mcp/pull/21
https://github.com/SepineTam/stata-mcp/releases/tag/v1.13.0