Login
Sign Up
Woofun AI reports that Cos, founder of SlowMist, disclosed a high-severity security vulnerability in Claude Code involving potential poisoning attacks. The analysis highlights inconsistent security mechanisms in Grok Build CLI and Claude Code CLI, where divergent trust assumptions create exploitable gaps. Attackers can leverage malicious project configuration files to execute arbitrary commands without user awareness. Testing on Mac systems demonstrated that specific commands could trigger local applications like the calculator, confirming execution risks. Successful exploitation may lead to the theft of API keys from services such as Claude and OpenAI, resulting in financial losses.
Additionally, attackers could obtain credentials for cloud providers including AWS, Alibaba Cloud, and Tencent Cloud to access servers and data. The vulnerability also enables code repository tampering for backdoor implantation and allows local devices to serve as entry points for internal enterprise network attacks. This security flaw has reportedly existed for one year.