logo

MCP Auto-Execution: From Git Clone to Cloud Compromise in Amazon Q VS Code Extension

ID: c205ce7a-12e3-5466-922b-e681547a95ca

STIX ID: report--c205ce7a-12e3-5466-922b-e681547a95ca

Feed Name: Wiz Blog

Threat Score
75/100

Date Published: 2026-06-26

Date Updated: 2026-06-26

Author: Maor Dokhanian

...
...

**Executive Summary:** Wiz Research discovered a high-severity vulnerability (CVE-2026-12957) in the Amazon Q VS Code extension where the extension automatically loaded and executed MCP server configurations from workspace files without consent, enabling immediate arbitrary code execution and exfiltration of cloud credentials when a developer opened a malicious repository; Amazon remediated the issue in language server version 1.65.0.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.