200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...
Tom's Hardware on MSN

Anthropic's model context protocol includes a critical remote code execution vulnerability

A design choice in the MCP SDKs allows remote code execution across the AI supply chain.
Hosted on MSN

Experts flag potentially critical security issues at heart of Anthropic MCP

Ox researchers warn Anthropic’s Model Context Protocol has systemic RCE flaw Vulnerability baked into MCP SDKs across Python, TypeScript, Java, Rust 200,000+ instances exposed; Anthropic says behavior ...
Visual Studio Magazine

Hands On: Building an MCP Server with VS Code AI Toolkit's New Tool Catalog

Microsoft's AI Toolkit extension for VS Code now includes a Tool Catalog that can scaffold a Python or TypeScript MCP server with the core transport and registration plumbing already set up. In ...