Microsoft's recently unveiled NLWeb protocol, designed for "Agentic Web" applications and deployed with early customers like Shopify, has been found to have a critical path traversal vulnerability. This flaw allows remote users to access sensitive files, including OpenAI and Gemini API keys, which researchers warn could compromise AI agents' "cognitive engine" and lead to significant financial loss or malicious cloning. While Microsoft has issued a patch, it has not released a CVE, raising concerns among security researchers about the company's approach to security in its rapidly expanding AI initiatives and the broader implications for AI system integrity.
A critical 'path traversal' vulnerability has been discovered in Microsoft's newly launched NLWeb protocol, a foundational technology for its "Agentic Web" strategy being deployed with partners like Shopify, Snowflake, and TripAdvisor. The flaw, described by security researchers as "catastrophic" for AI systems, allows for unauthenticated remote access to sensitive files, including API keys for LLMs like GPT-4 and Gemini. This could enable attackers to compromise the core 'cognitive engine' of AI agents, leading to significant financial losses from API abuse or the creation of malicious clones. Microsoft's response has itself raised governance concerns; while a patch was issued on July 1st, the company has refrained from issuing an industry-standard CVE, potentially limiting visibility and formal tracking of the vulnerability. This incident casts doubt on the effectiveness of Microsoft's renewed security focus, highlighting a material risk that the rapid pace of AI product development may be outpacing security diligence and transparent disclosure practices.
AI-powered research, real-time alerts, and portfolio analytics for institutional investors.
Request a DemoOverall Sentiment
strongly negative
Sentiment Score
-0.70
Ticker Sentiment
