1. Model Context Protocol Java SDK Contains Reachable High-Severity Vulnerability as AI Tool Integrations Expand
Security scanning has identified two vulnerabilities in the Model Context Protocol (MCP) Java SDK version 0.16.0, with the highest reaching a CVSS score of 8.1 and marked as reachable. The flaws reside in the mcp-core-0.16.0.jar transitive dependency, which the SDK relies upon to enable seamless integration between lan...