CVE-2025-59828
BaseFortify
Publication date: 2025-09-24
Last updated on: 2025-11-26
Assigner: GitHub, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| anthropic | claude_code | to 1.0.39 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-862 | The product does not perform an authorization check when an actor attempts to access a resource or perform an action. |
| CWE-829 | The product imports, requires, or includes executable functionality (such as a library) from a source that is outside of the intended control sphere. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability occurs in Claude Code versions prior to 1.0.39 when used with Yarn versions 2.0 or higher. Yarn plugins are automatically executed when running 'yarn --version', which causes the plugins to run before the user has accepted the risks of working in an untrusted directory. This behavior allows a bypass of the directory trust dialog in Claude Code, potentially executing untrusted code without user consent. Users running Yarn Classic are not affected. The issue has been fixed in Claude Code version 1.0.39.
How can this vulnerability impact me? :
This vulnerability can lead to the execution of untrusted Yarn plugins before the user has accepted the risks of working in an untrusted directory. This could allow malicious code to run without user consent, potentially compromising the security of the user's environment or data. It increases the risk of unauthorized code execution and related security impacts.
What immediate steps should I take to mitigate this vulnerability?
Update Claude Code to version 1.0.39 or later. Users on standard Claude Code auto-update will have received this fix automatically. Users performing manual updates should update to the latest version to mitigate the vulnerability.