VentureBeat

200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

Source: VentureBeat created with Imagen. MCP's STDIO transport, the default for connecting an AI agent to a local tool, executes any operating system command it receives. No sanitization. No execution ...
Computing

Flaw in Anthropic’s MCP putting 200k servers at risk, researchers claim

A vulnerability in Anthropic’s open source Model Context Protocol is putting up to 200,000 servers at risk of complete takeover. A design choice in Model Context Protocol (MCP) has opened up a ...