AIBearisharXiv – CS AI · 8h ago7/10
🧠
Description-Code Inconsistency in Real-world MCP Servers: Measurement, Detection, and Security Implications
Researchers have identified widespread Description-Code Inconsistency (DCI) in Model Context Protocol servers, where tool descriptions don't match actual implementations. A study of 2,214 MCP servers found that 9.93% of description-code pairs exhibit inconsistencies, creating security vulnerabilities that enable operational failures and malicious behavior in LLM-powered applications.