CVE-2026-10661
Deferred Deferred - Pending Action
Blender MCP Server Open Function Input Image URL Injection

Publication date: 2026-06-02

Last updated on: 2026-06-04

Assigner: VulDB

Description
A vulnerability has been found in ahujasid blender-mcp up to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b. Impacted is the function Open of the file src/blender_mcp/server.py. The manipulation of the argument input_image_url leads to injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. This product follows a rolling release approach for continuous delivery, so version details for affected or updated releases are not provided. The identifier of the patch is 5b37be25242e73dc4cf1328974d30458b9e5d67e. To fix this issue, it is recommended to deploy a patch.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-02
Last Modified
2026-06-04
Generated
2026-06-24
AI Q&A
2026-06-03
EPSS Evaluated
2026-06-22
NVD
CVE-2026-10661
EUVD
EUVD-2026-34036
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
ahujasid blender-mcp to 7636d13bded82eca58eb93c3f4cd8708dfdfbe8b (inc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-74 The product constructs all or part of a command, data structure, or record using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify how it is parsed or interpreted when it is sent to a downstream component.
CWE-707 The product does not ensure or incorrectly ensures that structured messages or data are well-formed and that certain security properties are met before being read from an upstream component or sent to a downstream component.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the ahujasid blender-mcp software, specifically in the Open function of the src/blender_mcp/server.py file. It is caused by improper handling of the input_image_url argument, which leads to an injection vulnerability. This means that an attacker can manipulate this input to inject malicious data or commands.

The vulnerability can be exploited remotely, allowing attackers to perform the injection without needing local access. The issue has been publicly disclosed and a patch has been identified to fix it.

Impact Analysis

The vulnerability allows remote attackers to inject malicious input via the input_image_url parameter. This could potentially lead to unauthorized actions or compromise of the affected system depending on how the injection is leveraged.

However, the CVSS scores indicate a relatively low to moderate severity, with limited impact on confidentiality and no impact on integrity or availability. This suggests that while the vulnerability is exploitable remotely, the overall damage may be limited.

Mitigation Strategies

To mitigate this vulnerability, it is recommended to deploy the patch identified by commit 5b37be25242e73dc4cf1328974d30458b9e5d67e.

Since the product follows a rolling release approach, ensure your installation is updated to the latest version that includes this patch.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-10661. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart