ГлавнаяУязвимости → CVE-2025-64755
9.8критическая

CVE-2025-64755

Описание

Claude Code is an agentic coding tool. Prior to version 2.0.31, due to an error in sed command parsing, it was possible to bypass the Claude Code read-only validation and write to arbitrary files on the host system. This issue has been patched in version 2.0.31.

Затрагиваемое ПО
Anthropic Claude code
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/anthropics/claude-code/security/advisories/GHSA-7mv8-j34q-vp7q