High-risk tools in VNC MCP Server
12 of the 21 tools in VNC MCP Server are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
vnc_connectExecuteConnect to a VNC server
-
vnc_execute_sequenceExecuteExecute a sequence of input actions (move, click, type, key, wait) in a single call for higher speed
-
vnc_key_tapExecuteTap a key (e.g.,
-
vnc_launch_gui_appExecuteLaunch a GUI application on the remote desktop (Linux focus)
-
vnc_mouse_clickExecuteClick the mouse
-
vnc_mouse_double_clickExecuteDouble click the mouse
-
vnc_mouse_dragExecutePerform a drag and drop
-
vnc_mouse_moveExecuteMove the mouse
-
vnc_mouse_scrollExecuteScroll the mouse
-
vnc_system_commandExecuteExecute a shell command in the background on the server
-
vnc_type_stringExecuteType a string
-
vnc_wait_for_changeExecuteWait until a region changes
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.