Primary

Context

Claude Code Command Injection Vulnerability Allowing Bypass of Confirmation Prompt

Vulnerability

A command injection vulnerability has been identified in Claude Code versions prior to 1.0.105. This issue arises from a flaw in command parsing, which allowed users to bypass the confirmation prompt and execute untrusted commands. Exploitation of this vulnerability requires the ability to insert untrusted content into a Claude Code context window.

Impact

Exploitation of this vulnerability could lead to the execution of untrusted commands, potentially allowing for arbitrary command execution depending on the context in which Claude Code is running.

Remediation

Users on standard Claude Code auto-update will have received the fix automatically. Those performing manual updates should update to version 1.0.105 or the latest version.

Added: Sep 10, 2025, 4:23 PM

Updated: Sep 10, 2025, 4:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.4

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Claude Code Command Injection Vulnerability Allowing Bypass of Confirmation Prompt

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating