Vibe Coding
Pattern: MCP Configuration Files as Primary Attack Vector — Three CVEs in One Week Target the Config Layer
MCP's attack surface has shifted from protocol-level to configuration-level. In the same week: CVE-2026-21518 (VS Code mcp.json command injection, RCE), CVE-2026-32211 (Azure MCP Server missing authentication, CVSS 9.1), and CVE-2026-5322 (mcp-data-vis SQL injection via MCP handler). The pattern: MCP configuration files and server registrations are treated as trusted input by editors and orchestrators, but they're user-supplied strings that pass through to system calls. This is the OWASP injection class applied to the agent configuration layer — a new attack surface that didn't exist 12 months ago.
↳ Follow the thread