EXECUTIVE SUMMARY:
A critical remote code execution vulnerability identified as CVE-2025-6514 affects mcp-remote versions ranging from 0.0.5 to 0.1.15, with a CVSS score of 9.6. This flaw allows attackers to run operating system commands on machines using mcp-remote when connected to untrusted or malicious Model Context Protocol servers. This risk is especially high for Large Language Model clients like Claude Desktop that use remote MCP connections. The issue lies in how mcp-remote handles OAuth authorization metadata from remote servers. Attackers can exploit this through direct malicious MCP connections or through man-in-the-middle attacks on insecure HTTP links, leading to full system compromise.