CVE-2025-53967: 
JavaScript vulnerability analysis and mitigation

A command injection vulnerability (CVE-2025-53967) was discovered in figma-developer-mcp MCP Server versions 0.6.2 and earlier. The vulnerability stems from unsanitized use of input parameters within child_process.exec calls, which could allow attackers to inject arbitrary system commands. The issue was discovered on September 29, 2025, and was patched in version 0.6.3 (GitHub Advisory).

The vulnerability exists due to the server constructing and executing shell commands using unvalidated user input directly within command-line strings. This introduces the possibility of shell metacharacter injection (|, >, &&, etc.). The vulnerability specifically affects the getfigmadata tool where input parameters are passed directly to child_process.exec without proper sanitization. The CVSS score is 7.5 (High) with vector string CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H, indicating network attack vector, high complexity, no privileges required, and user interaction required (GitHub Advisory).

Successful exploitation can lead to remote code execution (RCE) under the server process's privileges. An attacker could potentially execute arbitrary commands on the affected system through the MCP Server. The vulnerability affects confidentiality, integrity, and availability of the system, with all three rated as High in the CVSS metrics (GitHub Advisory).

The vulnerability has been patched in version 0.6.3. Users should upgrade to this version or later. For those unable to upgrade immediately, it is recommended to avoid using childprocess.exec with untrusted input and instead use childprocess.execFile, which allows passing arguments as a separate array—avoiding shell interpretation entirely (GitHub Advisory).