Lucene search
K

20 matches found

ATTACKERKB
ATTACKERKB
•added 2026/06/22 3:16 p.m.•3 views

CVE-2026-49241

The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. Prior to 21.2.4, the client-side Angular Language Service VS Code extension reads the custom TypeScript SDK paths typescript.tsdk and js/ts.tsdk.path directly from workspace configurations...

8.7CVSS5.9AI score0.00154EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
•added 2026/06/17 12:0 a.m.•18 views

PT-2026-50492

Name of the Vulnerable Software and Affected Versions Pi versions prior to 0.79.0 Description Pi loaded project-local configuration and resources from a repository's .pi directory, including executable TypeScript or JavaScript modules known as project-local extensions, without requiring the user ...

4.4CVSS6.3AI score0.00118EPSS
Exploits0References13
NVD
NVD
•added 2026/05/05 9:16 p.m.•53 views

CVE-2026-40068

In versions 2.1.63 through 2.1.83 of Claude Code, the folder trust determination logic used the git worktree commondir file without validating its contents. An attacker could craft a malicious repository with a commondir file pointing to a path the victim had previously trusted, causing Claude Co...

8.8CVSS0.00281EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
•added 2026/04/10 12:0 a.m.•10 views

Anthropic Claude Code < 2.0.65 API Key Leak via Project Settings (CVE-2026-21852)

The version of Anthropic Claude Code installed on the remote host is prior to 2.0.65. It is, therefore, affected by an information disclosure vulnerability. A vulnerability in the project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirm...

7.5CVSS6.1AI score0.2297EPSS
Exploits2References2
RedhatCVE
RedhatCVE
•added 2026/03/26 3:0 p.m.•4 views

CVE-2026-33068

Claude Code is an agentic coding tool. Versions prior to 2.1.53 resolved the permission mode from settings files, including the repo-controlled .claude/settings.json, before determining whether to display the workspace trust confirmation dialog. A malicious repository could set...

8.8CVSS5.8AI score0.00337EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
•added 2026/03/20 8:17 a.m.•7 views

CVE-2026-33068

Claude Code is an agentic coding tool. Versions prior to 2.1.53 resolved the permission mode from settings files, including the repo-controlled .claude/settings.json, before determining whether to display the workspace trust confirmation dialog. A malicious repository could set...

7.7CVSS5.9AI score0.00337EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
•added 2026/03/19 12:0 a.m.•7 views

PT-2026-26297

Name of the Vulnerable Software and Affected Versions Claude Code versions prior to 2.1.53 Description Claude Code is an agentic coding tool that experienced a loading order issue in its settings loader. The software resolved the permission mode from settings files, such as the...

8.8CVSS5.8AI score0.00337EPSS
Exploits0References25
RedhatCVE
RedhatCVE
•added 2026/01/22 9:26 p.m.•7 views

CVE-2026-21852

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

7.5CVSS5.7AI score0.2297EPSS
Exploits2References1
NVD
NVD
•added 2026/01/21 9:16 p.m.•14 views

CVE-2026-21852

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

7.5CVSS0.2297EPSS
Exploits2References1
Cvelist
Cvelist
•added 2026/01/21 8:42 p.m.•27 views

CVE-2026-21852 Claude Code Leaks Data via Malicious Environment Configuration Before Trust Confirmation

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

5.3CVSS0.2297EPSS
Exploits2References1
EUVD
EUVD
•added 2026/01/21 8:42 p.m.•8 views

EUVD-2026-3597

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

5.3CVSS5.7AI score0.2297EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
•added 2026/01/21 8:42 p.m.•11 views

CVE-2026-21852

Claude Code is an agentic coding tool. Prior to version 2.0.65, vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. An attacker-controlled repository could include a settings file that sets...

7.5CVSS5.5AI score0.2297EPSS
Exploits2References2Affected Software1
CVE
CVE
•added 2026/01/21 8:42 p.m.•45 views

CVE-2026-21852

CVE-2026-21852 affects Claude Code prior to 2.0.65. The vulnerability resides in the project-load flow where an attacker-controlled repository can set ANTHROPIC_BASE_URL to an attacker endpoint, causing Claude Code to issue API requests and leak Anthropic API keys before trust confirmation. Impac...

7.5CVSS5.7AI score0.2297EPSS
Exploits2References1Affected Software1
Github Security Blog
Github Security Blog
•added 2026/01/21 1:0 a.m.•14 views

Claude Code Leaks Data via Malicious Environment Configuration Before Trust Confirmation

A vulnerability in Claude Code's project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirmed trust. If a user started Claude Code in an attacker-controller repository, and the repository included a settings file that set ANTHROPICBASEURL...

7.5CVSS5.6AI score0.2297EPSS
Exploits2References3Affected Software1
Positive Technologies
Positive Technologies
•added 2026/01/21 12:0 a.m.•19 views

PT-2026-3758

Name of the Vulnerable Software and Affected Versions Claude Code versions prior to 2.0.65 Description A flaw in the project-load flow of Claude Code allows malicious repositories to exfiltrate sensitive data, such as Anthropic API keys, before a user confirms trust. An attacker can achieve this ...

7.5CVSS6.2AI score0.2297EPSS
Exploits2References77
Veracode
Veracode
•added 2025/10/06 8:32 a.m.•7 views

Improper Warning Message Handling

@anthropic-ai/claude-code is vulnerable to improper warning message handling. The vulnerability is due to an unclear trust prompt that failed to inform users that selecting “Yes, proceed” would execute files in the folder without further confirmation, which allows an attacker to trick users into...

7.3AI score
Exploits0
EUVD
EUVD
•added 2025/10/03 8:7 p.m.•4 views

EUVD-2025-27563

Malicious code in bioql PyPI...

8.7CVSS6.5AI score0.00508EPSS
Exploits0References3
NVD
NVD
•added 2025/09/24 8:15 p.m.•9 views

CVE-2025-59828

Claude Code is an agentic coding tool. Prior to Claude Code version 1.0.39, when using Claude Code with Yarn versions 2.0+, Yarn plugins are auto-executed when running yarn --version. This could lead to a bypass of the directory trust dialog in Claude Code, as plugins would be executed prior to t...

9.8CVSS0.00341EPSS
Exploits0References1
Metasploit
Metasploit
•added 2025/08/04 6:56 p.m.•436 views

Malicious XDG Desktop File

This module creates a malicious XDG Desktop .desktop file. On most modern systems, desktop files are not trusted by default. The user will receive a warning prompt that the file is not trusted when running the file, but may choose to run the file anyway. The default file manager applications in...

5.8AI score
Exploits0
Packet Storm
Packet Storm
•added 2025/08/04 12:0 a.m.•92 views

📄 Malicious XDG Desktop File

This Metasploit module creates a malicious XDG Desktop .desktop file. On most modern systems, desktop files are not trusted by default. The user will receive a warning prompt that the file is not trusted when running the file, but may choose to run the file anyway. The default file manager...

7.2AI score
Exploits0
Rows per page
Query Builder