腾讯网

AI 圈地震:MCP 设计缺陷影响超 20 万台服务器

IT之家 4 月 16 日消息,网络安全公司 OX Security 昨日(4 月 15 日)发布报告,披露 Anthropic 的 MCP(模型上下文协议)存在设计缺陷,可导致远程代码执行。该设计缺陷影响范围极广,导致超过 20 万台 AI ...
腾讯网

Anthropic拒绝修复MCP设计缺陷,20万台服务器面临安全风险

Ox安全研究团队表示,他们曾多次要求Anthropic从根本上修复这一问题,但均遭拒绝。Anthropic方面坚称该协议运行正常,尽管已有10个与MCP相关的开源工具和AI智能体获得了高危或严重级别的CVE编号。Ox认为,一次根本性的架构修复,原本可 ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...

Anthropic MCP协议存严重缺陷,厂商拒绝修复

IT之家 4 月 18 日消息,安全研究团队 OX Security 本周(4 月 15 日)发现,Anthropic 创建、维护的行业标准 AI 通信协议 MCP(IT之家注:Model Context ...

Experts flag potentially critical security issues at heart of Anthropic MCP

Anthropic sees no issues - and says the tools are working as intended.
Visual Studio Magazine

Hands On: Building an MCP Server with VS Code AI Toolkit's New Tool Catalog

Microsoft's AI Toolkit extension for VS Code now includes a Tool Catalog that can scaffold a Python or TypeScript MCP server with the core transport and registration plumbing already set up. In ...