We scanned 763 MCP servers – 31% have exploitable schema vulnerabilities(munio.dev)
munio.dev
We scanned 763 MCP servers – 31% have exploitable schema vulnerabilities
https://munio.dev/blog/mcp-server-security-scan-763/
https://munio.dev/blog/mcp-server-security-scan-763/
The most surprising finding was that composition risk (safe tools chaining into dangerous flows) outweighs individual vulnerabilities. 7,425 toxic data flows vs 312 command injections.
Happy to answer questions about the methodology or specific finding categories.