{"data":{"id":"b83d9f7b-74a7-4bf5-8e8a-d4c09def461a","title":"GHSA-p7fg-763f-g4gf: Claude SDK for TypeScript has Insecure Default File Permissions in Local Filesystem Memory Tool","summary":"The Claude SDK for TypeScript had a security flaw where a tool called `BetaLocalFilesystemMemoryTool` created files and folders with overly permissive access settings (using Node.js defaults like `0o666` for files and `0o777` for directories, which control who can read or modify them). This meant that on shared computers or in containerized environments (like Docker), other users could read sensitive agent data or modify it to change how the AI behaves.","solution":"Users on the affected versions are advised to update to the latest version.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-p7fg-763f-g4gf","publishedAt":"2026-04-29T22:28:12.000Z","cveId":"CVE-2026-41686","cweIds":null,"cvssScore":null,"cvssSeverity":"medium","severity":"medium","attackType":["other"],"issueType":"vulnerability","affectedPackages":["@anthropic-ai/sdk@>= 0.79.0, < 0.91.1 (fixed: 0.91.1)"],"affectedVendors":["Anthropic"],"affectedVendorsRaw":["Anthropic","Claude SDK for TypeScript"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-04-29T22:28:12.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"trivial","impactType":["confidentiality","integrity"],"aiComponentTargeted":"agent","llmSpecific":true,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":null}}