Command Injection Vulnerability in Figma MCP
Summary
Hide ▲
Show ▼
A command injection vulnerability (CVE-2025-53967) in the Figma MCP server allows remote code execution. The flaw, stemming from unsanitized user input, was patched in version 0.6.3. The issue affects developers using AI-powered coding agents like Cursor. The vulnerability could be exploited by attackers on the same network or via DNS rebinding attacks. It was discovered by Imperva in July 2025 and was addressed in the latest release. The flaw resides in the 'src/utils/fetch-with-retry.ts' file, where the curl command is constructed using shell command strings, enabling potential remote code execution.
Timeline
-
08.10.2025 13:58 1 articles · 4h ago
Command Injection Vulnerability in Figma MCP Disclosed
A command injection vulnerability (CVE-2025-53967) in the Figma MCP server was disclosed. The flaw allows remote code execution due to unsanitized user input. The vulnerability was discovered in July 2025 and was patched in version 0.6.3 of figma-developer-mcp. The issue affects developers using AI-powered coding agents like Cursor. The flaw can be exploited by attackers on the same network or via DNS rebinding attacks. The vulnerability resides in the 'src/utils/fetch-with-retry.ts' file, where the curl command is constructed using shell command strings.
Show sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
Information Snippets
-
The vulnerability is tracked as CVE-2025-53967 with a CVSS score of 7.5.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The flaw allows for remote code execution due to unsanitized user input.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The issue was discovered by Imperva in July 2025.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The vulnerability was patched in version 0.6.3 of figma-developer-mcp.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The flaw resides in the 'src/utils/fetch-with-retry.ts' file.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The exploit can be triggered by sending a series of requests to the vulnerable MCP.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The vulnerability can be exploited via DNS rebinding attacks.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58
-
The flaw affects developers using AI-powered coding agents like Cursor.
First reported: 08.10.2025 13:581 source, 1 articleShow sources
- Severe Figma MCP Vulnerability Lets Hackers Execute Code Remotely — Patch Now — thehackernews.com — 08.10.2025 13:58