Claude Code is an agentic coding tool that allows users to create and manage code snippets. Due to errors in parsing shell commands related to $IFS and short CLI flags, it was possible for attackers to bypass the Claude Code read-only validation and trigger arbitrary code execution. This vulnerability poses a significant risk to organizations using the tool, as it could allow unauthorized access to sensitive data or execute malicious code.
You're affected if you use Claude Code. Affected versions: 1.0.93 If you don't recognise this software, you're probably not affected.
To fix this vulnerability, update to the latest version of Claude Code, which is v1.0.93 or later. You can do this by running npm install @anthropic-ai/claude-code@latest in your terminal (if you're using npm). Alternatively, if immediate action isn't possible, consider implementing mitigations such as restricting network access to the Claude Code instance and monitoring for suspicious activity.