FastMCP <2.13 command injection via server_name on Windows
CVE-2025-62801 Published on October 28, 2025
FastMCP vulnerable to windows command injection in FastMCP Cursor installer via server_name
FastMCP is the standard framework for building MCP applications. Versions prior to 2.13.0, a command-injection vulnerability lets any attacker who can influence the server_name field of an MCP execute arbitrary OS commands on Windows hosts that run fastmcp install cursor. This vulnerability is fixed in 2.13.0.
Weakness Type
What is a Shell injection Vulnerability?
The software constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
CVE-2025-62801 has been classified to as a Shell injection vulnerability or weakness.
Products Associated with CVE-2025-62801
Want to know whenever a new CVE is published for Jlowin Fastmcp? stack.watch will email you.
Affected Versions
jlowin fastmcp Version < 2.13.0 is affected by CVE-2025-62801Vulnerable Packages
The following package name and versions may be associated with CVE-2025-62801
| Package Manager | Vulnerable Package | Versions | Fixed In |
|---|---|---|---|
| pip | fastmcp | < 2.13.0 | 2.13.0 |
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.