High-risk tools in Mcp Ssh

High severity Mcp Ssh MCP Server 7 of 23 tools

7 of the 23 tools in Mcp Ssh are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.

Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.

Tools at high risk

backgroundExecute Execute

Executes a command in the background on a remote server at a specified interval.
executeCommand Execute

Executes a command on a remote server via SSH.
stopAllBackgroundTasks Execute

Stops all running background tasks.
stopBackground Execute

Stops a background command execution on a specific connection.
createTunnel Execute

Creates an SSH tunnel (port forwarding).
mcp_ssh_mcp_createTerminalSession Execute

Creates a new interactive terminal session.
mcp_ssh_mcp_writeToTerminal Execute

Writes data to an interactive terminal session.

Attacks that target this class

High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.

High-risk tools in Mcp Ssh

Tools at high risk

Attacks that target this class

More on Mcp Ssh

Enforce policy on every Mcp Ssh tool call.