Vulnerability in Anthropics Anthropic-sdk-python

CVE-2026-34452

The Claude SDK for Python provides access to the Claude API from Python applications. From version 0.86.0 to before version 0.87.0, the async local filesystem memory tool in the Anthropic Python SDK validated that model-supplied paths reso…

EPSS: 0.000 (0.2th percentile) — read the EPSS interpretation.

Affected products

Anthropics Anthropic-sdk-python — versions >= 0.86.0, < 0.87.0

Weakness classification (CWE)

References

https://github.com/anthropics/anthropic-sdk-python/security/advisories/GHSA-w828-4qhx-vxx3 (x_refsource_CONFIRM)
https://github.com/anthropics/anthropic-sdk-python/commit/6599043eee6e86dce16953fcd1fd828052052be6 (x_refsource_MISC)
https://github.com/anthropics/anthropic-sdk-python/releases/tag/v0.87.0 (x_refsource_MISC)