Vulnerability in Anthropics Claude-code
CVE-2026-33068
Claude Code is an agentic coding tool. Versions prior to 2.1.53 resolved the permission mode from settings files, including the repo-controlled .claude/settings.json, before determining whether to display the workspace trust confirmation d…
EPSS: 0.002 (42.3th percentile) — read the EPSS interpretation.
Affected products
- Anthropics Claude-code — versions < 2.1.53
Weakness classification (CWE)
References
- https://github.com/anthropics/claude-code/security/advisories/GHSA-mmgp-wc2j-qcv7 (x_refsource_CONFIRM)