A high-severity vulnerability (CVE-2026-12957) in the Amazon Q Developer Extension for Visual Studio Code allowed attackers to achieve arbitrary code execution and cloud credential theft by automatically loading and executing malicious Model Context Protocol (MCP) server configurations from a `.amazonq/mcp.json` file in a repository without user consent, providing full access to a developer's environment and cloud credentials.
PoC
Amazon Q Developer Extension for Visual Studio Code +18
vulnerability
code-editor
cloud
rce
vs-code
supply-chain
1r
4t
5c
2i
updated