Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.5 views

CVE-2026-35020

Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in the command lookup helper and deep-link terminal launcher that allows local attackers to execute arbitrary commands by manipulating the TERMINAL environment variable. Attackers can inject shell...

8.6CVSS6.2AI score0.00114EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/06 9:31 p.m.9 views

EUVD-2026-19438

Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in the command lookup helper and deep-link terminal launcher that allows local attackers to execute arbitrary commands by manipulating the TERMINAL environment variable. Attackers can inject shell...

8.6CVSS6.2AI score0.00114EPSS
Exploits0References3
NVD
NVD
added 2026/04/06 8:16 p.m.9 views

CVE-2026-35020

Rejected reason: This CVE ID has been rejected by the its CVE Numbering Authority CNA. It was determined that the attack requires an attacker to already control arbitrary environment variables, a level of access they consider functionally equivalent to code execution and outside the threat model ...

0.00114EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/06 6:58 p.m.9 views

CVE-2026-35020

...

5.8AI score0.00114EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/06 6:58 p.m.23 views

CVE-2026-35020

...

0.00114EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/06 12:0 a.m.9 views

Claude Code CLI和Claude Agent SDK 操作系统命令注入漏洞

Claude Code CLI and Claude Agent SDK are both open-source products developed by Anthropic. Claude Code CLI is a command-line AI coding assistant tool. Claude Agent SDK is a developer toolkit for AI coding assistants. Both Claude Code CLI and Claude Agent SDK have operating system command injectio...

6.1AI score0.00114EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.11 views

PT-2026-30706

Name of the Vulnerable Software and Affected Versions Anthropic Claude Code CLI and Claude Agent SDK affected versions not specified Description Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection issue in the command lookup helper and deep-link terminal launcher. Local...

8.6CVSS6.2AI score0.00114EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/23 10:22 a.m.6 views

CVE-2024-41308

An issue in the Ping feature of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system...

8.4CVSS7.1AI score0.00207EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/08/07 12:0 a.m.22 views

CVE-2024-41309

An issue in the Hardware info module of IT Solutions Enjay CRM OS v1.0 allows attackers to escape the restricted terminal environment and gain root-level privileges on the underlying system...

7.1AI score0.00207EPSS
Exploits1References1
Rows per page
Query Builder