CNNVD-202510-538 Information
Oct 03, 2025
cve
CNNVD ID
CNNVD-202510-538
Related CVE
- CNNVD Published: 2025-10-03
Description (Chinese)
Claude Code是Anthropic开源的一个代理编码工具。 Claude Code 1.0.111之前版本存在代码注入漏洞,该漏洞源于启动信任对话框实现存在缺陷,可能导致代码注入攻击。
Description (English)
Claude Code is a proxy coding tool for the Anthropic open source. The pre-Claude Code 1.0.111 version contains a code-injecting loophole, which stems from the defects in the start-up of the trust dialogue box, which may lead to the code-injection attack.
Hazard Level
High
Vulnerability Type
代码注入
Affected Vendor
Anthropic
Published
2025-10-03
Last Modified
2026-02-24
References
https://github.com/anthropics/claude-code/security/advisories/GHSA-4fgq-fpq9-mr3g
Patch
https://docs.claude.com/en/docs/claude-code/overview
Share on: