QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2026-40068

Back to search

CVE-2026-40068

Published: May 5, 2026

Modified: May 6, 2026

PUBLISHED

Description

In versions 2.1.63 through 2.1.83 of Claude Code, the folder trust determination logic used the git worktree commondir file without validating its contents. An attacker could craft a malicious repository with a commondir file pointing to a path the victim had previously trusted, causing Claude Code to bypass its trust confirmation dialog and immediately execute hooks defined in `.claude/settings.json`. Exploitation requires the victim to clone the malicious repository and run Claude Code within it, and the attacker must know or guess a path the victim had already trusted. This issue has been fixed in version 2.1.84.

VendorProductVersions

anthropics

claude-code

affected
>= 2.1.63, < 2.1.84

Weaknesses (CWE)

CWE-20
CWE-77

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now