MCP Auto-Execution: From Git Clone to Cloud Compromise in Amazon Q VS Code Extension
ID: c205ce7a-12e3-5466-922b-e681547a95ca
STIX ID: report--c205ce7a-12e3-5466-922b-e681547a95ca
Feed Name: Wiz Blog
Threat Score
**Executive Summary:** Wiz Research discovered a high-severity vulnerability (CVE-2026-12957) in the Amazon Q VS Code extension where the extension automatically loaded and executed MCP server configurations from workspace files without consent, enabling immediate arbitrary code execution and exfiltration of cloud credentials when a developer opened a malicious repository; Amazon remediated the issue in language server version 1.65.0.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
