Kevin Codex
3 exploits
Active since Apr 2026
OpenClaude's MCP OAuth Callback: State Check Bypass via error Param Leads to DoS
CVSS 6.5
OpenClaude: Sandbox Bypass via Model-Controlled `dangerouslyDisableSandbox` Input
CVSS 9.8
OpenClaude has Sandbox Bypass via Early-Exit Logic Flaw that Allows Path Traversal
CVSS 8.4