CVE Details
Basic Information
| Title | Claude Code echo command allowed bypass of user approval prompt for command execution |
|---|---|
| Type | cve |
| Published | 2025-08-05T00:07:29.465Z |
| Modified | 2025-08-05T00:07:29.465Z |
Product Information
| Vendor | anthropics |
|---|---|
| Product | claude-code |
| Version | < 1.0.20 |
CVSS Information
| Base Score | 8.7 (HIGH) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N |
AI Analysis
| AI Description | A command parsing error in Claude Code allows bypassing the confirmation prompt, enabling execution of untrusted commands. This issue is fixed in version 1.0.20. |
|---|---|
| AI Severity | Critical |
| AI Vendor | Anthropics |
| AI Product | Claude Code |
| AI Version | Versions below 1.0.20 |
Affected Products
- anthropics claude-code < 1.0.20
Additional Information
| CWE List | CWE-78 |
|---|---|
| Source | GitHub_M |
Description
Claude Code is an agentic coding tool. In versions below 1.0.20, an error in command parsing makes it possible to bypass the Claude Code confirmation prompt to trigger execution of an untrusted command. Reliably exploiting this requires the ability to add untrusted content into a Claude Code context window. This is fixed in version 1.0.20.