We use cookies to improve your experience on our site.
AVID-2026-R0421
Description
Google Gemini CLI MCP Configuration Code Execution
Details
The gemini-cli is vulnerable to Arbitrary Code Execution (RCE) via malicious Model Context Protocol (MCP) server definitions in workspace settings. Workspace settings can configure MCP servers through the mcpServers or mcp.serverCommand fields in .gemini/settings.json.
References
Affected or Relevant Artifacts
- Developer: Google
- Deployer:
- Artifact Details:
| Type | Name |
|---|---|
| System | Gemini CLI |
Impact
- (none)
Other information
- Report Type: Advisory
- Credits: Piotr Ryciak, Mindgard
- Date Reported: 2025-12-26
- Version: 0.3.1
- AVID Entry