Intrusion Prevention

Framelink.Figma.MCP.Server.Filekey.Command.Injection

Description

This indicates an attack attempt to exploit a Command Injection Vulnerability in Framelink Figma MCP Server.
The vulnerability is due to insufficient validation of user-supplied input in the application. A remote attacker may be able to exploit this to execute arbitrary code within the context of the application.

Affected Products

Framelink Figma MCP Server before 0.6.3

Impact

System Compromise: Remote attackers can gain control of vaulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://github.com/GLips/Figma-Context-MCP

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2026-03-31	35.193	New

ID	60545
Created	Mar 23, 2026
Updated	Mar 30, 2026
CVE ID
Risk
Exploit Prediction Score	0.01%
Default Action	pass
Active
Affected OS	Windows, Linux, MacOS
Affected App	Other
Profile Type	OS Command Injection

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

Framelink.Figma.MCP.Server.Filekey.Command.Injection

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

Framelink.Figma.MCP.Server.Filekey.Command.Injection

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center