Known Vulnerabilities for Claude Code by Anthropic
Listed below are 5 of the newest known vulnerabilities associated with "Claude Code" by "Anthropic".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-35022 json | Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in authentication helper executi... | Not Provided | 2026-04-06 | 2026-04-13 |
| CVE-2026-35021 json | Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in the prompt editor invocation ... | Not Provided | 2026-04-06 | 2026-04-13 |
| CVE-2026-35020 json | Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in the command lookup helper and... | Not Provided | 2026-04-06 | 2026-04-13 |
| CVE-2026-22561 json | Uncontrolled search path elements in Anthropic Claude for Windows installer (Claude Setup.exe) versions prior to 1.1.3363 all... | Not Provided | 2026-03-31 | 2026-03-31 |
| CVE-2025-64340 json | FastMCP is the standard framework for building MCP applications. Prior to version 3.2.0, server names containing shell metach... | Not Provided | 2026-04-03 | 2026-04-03 |