cbcvebase.

Gitlawb Openclaude vulnerabilities

3 known vulnerabilities affecting gitlawb/openclaude.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2026-42074P2CRITICALCVSS 9.8fixed in 0.5.12026-06-02
CVE-2026-42074 [CRITICAL] CWE-284 CVE-2026-42074: OpenClaude is an open-source coding-agent command line interface for cloud and local model providers OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the dangerouslyDisableSandbox parameter is exposed as part of the BashTool input schema, meaning the LLM (an untrusted principal per the project's own threat model) can set it to true in any tool_use response. Combined with
nvd
CVE-2026-35570P3HIGHCVSS 8.4fixed in 0.5.12026-04-21
CVE-2026-35570 [HIGH] CWE-22 CVE-2026-35570: OpenClaude is an open-source coding-agent command line interface for cloud and local model providers OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Versions prior to 0.5.1 have a logic flaw in `bashToolHasPermission()` inside `src/tools/BashTool/bashPermissions.ts`. When the sandbox auto-allow feature is active and no explicit deny rule is configured, the function returns an `allow` result immedia
ghsanvd
CVE-2026-42073P4MEDIUMCVSS 6.5fixed in 0.5.12026-06-02
CVE-2026-42073 [MEDIUM] CWE-352 CVE-2026-42073: OpenClaude is an open-source coding-agent command line interface for cloud and local model providers OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the OpenClaude MCP authentication flow starts a temporary local HTTP server to handle OAuth callbacks. To prevent CSRF attacks, the server validates a state parameter against an internally stored value. However, due to a logi
ghsanvd