CNNVD-202602-247 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-247
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Claude Code是Anthropic开源的一个代理编码工具。 Claude Code 1.0.111之前版本存在输入验证错误漏洞,该漏洞源于WebFetch请求的受信任域验证机制存在URL验证不足,可能导致数据渗漏。
Description (English)
Claude Code is a proxy coding tool for the Anthropic open source. The pre-Claude Code 1.0.111 version has an input validation error loophole, which stems from the fact that the trusted domain certification mechanism requested by WebFetch is deficient in URLs, which may lead to data leakage.
Hazard Level
High
Vulnerability Type
输入验证错误
Affected Vendor
Anthropic
Published
2026-02-03
Last Modified
2026-02-24
References
https://github.com/anthropics/claude-code/security/advisories/GHSA-vhw5-3g5m-8ggf
Patch
https://github.com/anthropics/claude-code/releases
Share on: