A critical vulnerability CVE-2025-6514 with a CVSS score of 9.6 affecting the mcp-remote project allows attackers to achieve arbitrary operating system command execution on machines running mcp-remote when connecting to untrusted Model Context Protocol (MCP) servers. The vulnerability affects versions 0.0.5 through 0.1.15 and poses significant risks to Large Language Model (LLM) clients using remote […]
The post Critical mcp-remote Vulnerability Exposes LLM Clients to Remote Code Execution Attacks appeared first on Cyber Security News.
This article has been indexed from Cyber Security News