CVE-2025-59041
Claude Code vulnerable to arbitrary code execution caused by maliciously configured git email
In short
Claude Code runs commands based on your git email settings without checking them first. An attacker could set a malicious email in git configuration to run harmful code on your computer before you even open a project.
Technical detail
Claude Code unsafely executes templated commands derived from `git config user.email` at startup before workspace trust validation occurs. An attacker with local git repository write access can inject arbitrary shell commands via a malicious email configuration, achieving code execution with the privileges of the Claude Code process prior to user consent mechanisms.
Summary generated and translated by AI from the official description.
Claude Code is an agentic coding tool. At startup, Claude Code executed a command templated in with `git config user.email`. Prior to version 1.0.105, a maliciously configured user email in git could be used to trigger arbitrary code execution before a user accepted the workspace trust dialog. Users on standard Claude Code auto-update will have received this fix automatically. Users performing manual updates are advised to update to version 1.0.105 or the latest version.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
anthropics · claude-codeWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →