HIGHCVE-2026-24887Published 2026-02-03Modified 2026-02-03CNA GitHub_M

CVE-2026-24887: Claude Code has a Command Injection in find Command Bypasses User Approval Prompt

Claude Code is an agentic coding tool. Prior to version 2.0.72, due to an error in command parsing, it was possible to bypass the Claude Code confirmation prompt to trigger execution of untrusted commands through the find command. Reliably exploiting this required the ability to add untrusted content into a Claude Code context window. This issue has been patched in version 2.0.72.

CVSS v4.0: 7.7
Severity: HIGH
Fixed in: —
Affected Products: 1

Affected packages

anthropics / claude-code
< 2.0.72

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

References

https://github.com/anthropics/claude-code/security/advisories/GHSA-qgqw-h4xq-7w8w

Metrics