Lucene search
K

4 matches found

NVD
NVD
added 2025/07/02 2:15 p.m.8 views

CVE-2025-34072

A data exfiltration vulnerability exists in Anthropic’s deprecated Slack Model Context Protocol MCP Server via automatic link unfurling. When an AI agent using the Slack MCP Server processes untrusted data, it can be manipulated to generate messages containing attacker-crafted hyperlinks embeddin...

9.3CVSS0.00371EPSS
Exploits0References2
CVE
CVE
added 2025/07/02 1:46 p.m.25 views

CVE-2025-34072

CVE-2025-34072 : A data exfiltration vulnerability affects Anthropic’s deprecated Slack Model Context Protocol (MCP) Server. When an AI agent processes untrusted data, attacker-crafted hyperlinks embedded in messages can be revealed by Slack link preview bots (Slack-LinkExpanding, Slackbot, Slack...

9.3CVSS6.5AI score0.00371EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/02 1:46 p.m.13 views

CVE-2025-34072 Anthropic Slack MCP Server Data Exfiltration via Link Unfurling

A data exfiltration vulnerability exists in Anthropic’s deprecated Slack Model Context Protocol MCP Server via automatic link unfurling. When an AI agent using the Slack MCP Server processes untrusted data, it can be manipulated to generate messages containing attacker-crafted hyperlinks embeddin...

9.3CVSS0.00371EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/07/02 1:46 p.m.4 views

CVE-2025-34072 Anthropic Slack MCP Server Data Exfiltration via Link Unfurling

A data exfiltration vulnerability exists in Anthropic’s deprecated Slack Model Context Protocol MCP Server via automatic link unfurling. When an AI agent using the Slack MCP Server processes untrusted data, it can be manipulated to generate messages containing attacker-crafted hyperlinks embeddin...

9.3CVSS7AI score0.00371EPSS
Exploits0References2
Rows per page
Query Builder