{"data":{"id":"d4ff5785-69f6-4e5d-b40a-f4b2958b640d","title":"GHSA-fg94-h982-f3mm: Claude Code: Out-of-Band Data Exfiltration via Pre-Approved HuggingFace Domain in WebFetch","summary":"Claude Code had a security flaw where the domain huggingface.co was automatically approved for the WebFetch tool (a feature that lets AI systems fetch data from the internet), allowing attackers to trick Claude into making web requests to attacker-controlled files and secretly stealing data like files or environment variables without user permission. An attacker would need to first inject malicious content into Claude's context (the information it's working with) to exploit this vulnerability.","solution":"Users on standard Claude Code auto-update have received this fix already; users performing manual updates are advised to update to the latest version.","labels":["security"],"sourceUrl":"https://github.com/advisories/GHSA-fg94-h982-f3mm","publishedAt":"2026-06-17T18:06:06.000Z","cveId":"CVE-2026-54316","cweIds":null,"cvssScore":null,"cvssSeverity":"medium","severity":"medium","attackType":["data_extraction"],"issueType":"vulnerability","affectedPackages":["@anthropic-ai/claude-code@>= 0.2.54, < 2.1.163 (fixed: 2.1.163)"],"affectedVendors":["Anthropic"],"affectedVendorsRaw":["Anthropic","Claude Code","HuggingFace"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":"unknown","epssScore":0,"patchAvailable":true,"disclosureDate":"2026-06-17T18:06:06.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"moderate","impactType":["confidentiality"],"aiComponentTargeted":"api","llmSpecific":true,"classifierConfidence":0.95,"researchCategory":null,"atlasIds":null}}