Claude SDK for TypeScript Insecure Default File Permissions Vulnerability
Vulnerability
A vulnerability exists in the Claude SDK for TypeScript, specifically in versions 0.79.0 prior to 0.91.1. The issue arises in the BetaLocalFilesystemMemoryTool, which creates memory files and directories with default Node.js permissions. This configuration leaves files world-readable and, in environments with a permissive umask, such as many Docker base images, world-writable. As a result, a local attacker on a shared host could access sensitive agent state data, while in containerized environments, there is potential to alter memory files and affect future model responses.
Impact
Exploitation of this vulnerability could lead to unauthorized access to persisted agent state or unauthorized modifications of memory files, potentially influencing subsequent behavior of the model.
Remediation
Users are advised to update to version 0.91.1 or later.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.