CVE-2026-24052

HIGH

Claude Code <1.0.111 - Info Disclosure

Title source: llm

Description

Claude Code is an agentic coding tool. Prior to version 1.0.111, Claude Code contained insufficient URL validation in its trusted domain verification mechanism for WebFetch requests. The application used a startsWith() function to validate trusted domains (e.g., docs.python.org, modelcontextprotocol.io), this could have enabled attackers to register domains like modelcontextprotocol.io.example.com that would pass validation. This could enable automatic requests to attacker-controlled domains without user consent, potentially leading to data exfiltration. This issue has been patched in version 1.0.111.

References (1)

[Vendor Advisory] https://github.com/anthropics/claude-code/security/advisories/GHSA-vhw5-3g5m-8ggf

Scores

CVSS v3 7.4

EPSS 0.0001

EPSS Percentile 3.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-601

Status published

Products (2)

anthropic/claude_code < 1.0.111

anthropic-ai/claude-code 0 - 1.0.111npm

Published Feb 03, 2026

Tracked Since Feb 18, 2026