## https://sploitus.com/exploit?id=59D72134-ACFA-5A08-A555-A3C9BB768612
# CVE-2026-23520-PoC
### Arcane MCP Command Injection (Kobold HTB)
A specialized Python Proof of Concept (PoC) for **CVE-2026-23520**, an unauthenticated Remote Code Execution (RCE) vulnerability in the **Arcane Docker Management** MCP server. This tool is designed for the **Kobold** machine on Hack The Box.
---
## ๐ Features
- **Auto-Version Check**: Probes the Arcane API on port 3552 to identify the version.
- **All-in-One Listener**: Multi-threaded internal listenerโno need for a separate `nc` window.
- **PTY-Ready**: Uses a `bash -i` payload for an interactive shell experience.
---
## ๐ ๏ธ Installation & Usage
### 1. Requirements
```bash
pip install requests
```
### 2. Basic Usage
Identify if the target is vulnerable before exploiting:
```bash
python3 kobold_poc.py -t https://mcp.kobold.htb -check
```
### 3. Exploitation (Reverse Shell)
Launch the exploit and catch the shell internally:
```bash
python3 kobold_poc.py -t https://mcp.kobold.htb -lh -lp 1234
```
---
## ๐ Vulnerability Details
The vulnerability stems from the `/api/mcp/connect` endpoint, which allows arbitrary command execution via the `serverConfig.command` and `args` parameters.
- **CVE ID**: 2026-23520
- **Severity**: 9.8 (Critical)
- **Path**: `/api/mcp/connect`
---
## โ๏ธ Disclaimer
This script is for educational purposes and authorized penetration testing only. Usage against targets without prior mutual consent is illegal.