Lucene search
K

4 matches found

Circl
Circl
added 2026/06/23 9:0 p.m.6 views

CVE-2026-24887

creationtimestamp| type| source ---|---|--- 2026-06-23 21:00:12+00:00| seen| https://gist.github.com/NikosRig/b4330ceb780fe22bf3c14f38d7d90795...

8.8CVSS5.8AI score0.00562EPSS
Exploits1References1
NVD
NVD
added 2026/02/03 9:16 p.m.5 views

CVE-2026-24887

Claude Code is an agentic coding tool. Prior to version 2.0.72, due to an error in command parsing, it was possible to bypass the Claude Code confirmation prompt to trigger execution of untrusted commands through the find command. Reliably exploiting this required the ability to add untrusted...

8.8CVSS0.00562EPSS
Exploits1References1
CVE
CVE
added 2026/02/03 8:50 p.m.21 views

CVE-2026-24887

CVE-2026-24887 affects Claude Code. An error in command parsing prior to version 2.0.72 allowed bypassing the confirmation prompt, enabling execution of untrusted commands via the find command when untrusted content could be placed in the Claude Code context window. This could lead to command inj...

8.8CVSS5.7AI score0.00562EPSS
Exploits1References1Affected Software1
vulnersOsv
vulnersOsv
added 2026/02/03 7:33 p.m.11 views

@kimuson/claude-code-viewer (>=0.4.2 <=0.5.9), @netlify/agent-runner-cli (>=1.0.0-broken <=1.58.3) +15 more potentially affected by CVE-2026-24887 via @anthropic-ai/claude-code (>=2.0.0 <=2.0.69)

@anthropic-ai/claude-code NPM version =2.0.0, =0.4.2, =1.0.0-broken, =0.0.1-rc.1, =0.12.0, =0.5.2, =0.12.1, =0.0.0, =0.1.2, =0.11.1, =0.11.0, =1.0.0, =1.2.1 and more Source cves: CVE-2026-24887 Source advisory: SNYK:JS-ANTHROPICAICLAUDECODE-15202067...

8.8CVSS5.7AI score0.00562EPSS
Exploits1
Rows per page
Query Builder