INCIDENT
MCP - Microsoft's Azure MCP Server, which connects AI agents
Microsoft's Azure MCP Server, which connects AI agents to DevOps environments, was shipped without any authentication, posing a serious security vulnerability.
Updated: 4/19/2026
high Severity
Status: active
Description
Microsoft shipped an AI agent infrastructure layer with no authentication. Not a misconfiguration. Not a corner case. The layer was missing it entirely. The Azure MCP Server connects AI agents to your DevOps environment: work items, repos, pipelines, pull requests, API keys,
Impact
Microsoft's Azure MCP Server, which connects AI agents to DevOps environments, was shipped without any authentication, posing a serious security vulnerability.
Attack Vectors
- DevOps
- API keys