CVE-2026-55607: Claude Code is an agentic coding tool. From 2.1.38 until 2.1.163, Claude Code's worktree handling allowed creation of w
Summary
Claude Code, a tool that uses AI to help write software, had a security flaw in versions 2.1.38 through 2.1.163 where it could be tricked into creating special folders named '.git' and accessing files outside its restricted sandbox (a controlled environment that limits what software can access). An attacker could exploit this by creating a malicious code repository and convincing a user to run Claude Code on it, potentially allowing the attacker to run commands on the user's computer outside the sandbox's protections.
Solution / Mitigation
This vulnerability is fixed in version 2.1.163.
Vulnerability Details
EPSS: 0.0%
June 29, 2026
Classification
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-55607
First tracked: June 29, 2026 at 02:07 PM
Classified by LLM (prompt v3) · confidence: 95%