Dashboard Vulnerabilities News Research Archive Stats Dataset

aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

Vulnerabilities News Research Digest Archive Newsletter Archive Subscribe Data Sources Statistics Dataset API Integrations Widget RSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

Critical Vulnerability in Claude Code Emerges Days After Source Leak | AI Sec Watch

Critical Vulnerability in Claude Code Emerges Days After Source Leak

highnewsLLM-Specific

security

Source: SecurityWeekApril 2, 2026

Summary

Anthropic's Claude Code source code was leaked, and shortly after, security researchers at Adversa AI discovered a critical vulnerability in the tool. The incident highlights how exposing source code can quickly lead to the discovery of serious security flaws.

Classification

Attack Type

Other

Attack SophisticationModerate

Impact (CIA+S)

integrityconfidentiality

Affected Vendors

Anthropic

Related Issues

Anthropic accuses Chinese AI labs of mining Claude as US debates AI chip exports

Same vendorTechCrunch

CVE-2022-21727: Tensorflow is an Open Source Machine Learning Framework. The implementation of shape inference for `Dequantize` is vulne

Monthly digest — independent AI security research

Original source: https://www.securityweek.com/critical-vulnerability-in-claude-code-emerges-days-after-source-leak/

First tracked: April 2, 2026 at 08:00 PM

Classified by LLM (prompt v3) · confidence: 75%

AI Component TargetedAPI

NVD/CVE Database

Anthropic doesn’t trust the Pentagon, and neither should you

Same vendorThe Verge (AI)

GHSA-w3hv-x4fp-6h6j: @grackle-ai/server has Missing WebSocket Origin Header Validation

Similar attackGitHub Advisory Database

CVE-2026-22252: LibreChat is a ChatGPT clone with additional features. Prior to v0.8.2-rc2, LibreChat's MCP stdio transport accepts arbi

Similar attackNVD/CVE Database