Join us at the legendary Security Wasteland party at Black Hat on August 6th
Register
Products
Government
Resources
Community
Company
Partners
Sign In / Join
Sign In
Advisories
Anthropic Slack MCP Server Data Exfiltration via Link Unfurling
Go Back
severity
critical
date
July 1, 2025
Affecting
All default deployments of Anthropic Slack MCP Server
CVE
CVE-2025-34072
CVE type
Information Disclosure
CVSS
9.3
CVSS V4 Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H
References
Disclosure & PoC
Credit
wunderwuzzi of Embrace The Red