MCP - Microsoft's Azure MCP Server, which connects AI agents

Microsoft's Azure MCP Server, which connects AI agents to DevOps environments, was shipped without any authentication, posing a serious security vulnerability.

Updated: 4/19/2026
high Severity
Status: active

Description

Microsoft shipped an AI agent infrastructure layer with no authentication. Not a misconfiguration. Not a corner case. The layer was missing it entirely. The Azure MCP Server connects AI agents to your DevOps environment: work items, repos, pipelines, pull requests, API keys,

Impact

Microsoft's Azure MCP Server, which connects AI agents to DevOps environments, was shipped without any authentication, posing a serious security vulnerability.

Attack Vectors

  • DevOps
  • API keys

Mitigation

    Sources