CVE-2025-64755OS Command Injection in Claude-code

CWE-78OS Command Injection3 documents3 sources
Severity
8.7HIGHNVD
EPSS
0.1%
top 79.89%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Anthropics Claude-codeAnthropic Claude CodeAnthropic-ai Claude-code
Timeline
Latest updateNov 20
PublishedNov 21

Description

Claude Code is an agentic coding tool. Prior to version 2.0.31, due to an error in sed command parsing, it was possible to bypass the Claude Code read-only validation and write to arbitrary files on the host system. This issue has been patched in version 2.0.31.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages3 packages

NVDanthropic/claude_code< 2.0.31
CVEListV5anthropics/claude-code< 2.0.31

🔴Vulnerability Details

2
GHSA
@anthropic-ai/claude-code has Sed Command Validation Bypass that Allows Arbitrary File Writes2025-11-20
OSV
@anthropic-ai/claude-code has Sed Command Validation Bypass that Allows Arbitrary File Writes2025-11-20