Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...
XDA Developers on MSN

I started using my local LLMs and an MCP server to manage my NAS – it's surprisingly powerful (and safe)

The official TrueNAS MCP server meshes well with my setup ...
SecurityWeek

‘By Design’ Flaw in MCP Could Enable Widespread AI Supply Chain Attacks

A ‘by design’ flaw in Anthropic’s Model Context Protocol (MCP) could allow silent command execution and full system ...
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...