CVE-2026-34450— Claude SDK for Python: Insecure Default File Permissions in Local Filesystem Memory Tool
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2026-34450
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Claude SDK for Python: Insecure Default File Permissions in Local Filesystem Memory Tool
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Claude SDK for Python provides access to the Claude API from Python applications. From version 0.86.0 to before version 0.87.0, the local filesystem memory tool in the Anthropic Python SDK created memory files with mode 0o666, leaving them world-readable on systems with a standard umask and world-writable in environments with a permissive umask such as many Docker base images. A local attacker on a shared host could read persisted agent state, and in containerized deployments could modify memory files to influence subsequent model behavior. Both the synchronous and asynchronous memory tool implementations were affected. This issue has been patched in version 0.87.0.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
缺省权限不正确
Source: NVD (National Vulnerability Database)
Vulnerability Title
Claude SDK for Python 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Claude SDK for Python是Anthropic开源的一个用于调用Claude API的Python软件开发工具包。 Claude SDK for Python 0.87.0之前版本存在安全漏洞,该漏洞源于本地文件系统内存工具创建的文件权限不当,可能导致本地攻击者读取或修改代理状态。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| anthropics | anthropic-sdk-python | >= 0.86.0, < 0.87.0 | - |
II. Public POCs for CVE-2026-34450
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2026-34450
请登录查看更多情报信息。
Same Patch Batch · anthropics · 2026-03-31 · 3 CVEs total
| CVE-2026-34451 | Claude SDK for TypeScript: Memory Tool Path Validation Allows Sandbox Escape to Sibling Di | |
| CVE-2026-34452 | Claude SDK for Python: Memory Tool Path Validation Race Condition Allows Sandbox Escape |
IV. Related Vulnerabilities
Same vendor: anthropics
- CVE-2026-40068
Claude Code arbitrary code execution via git worktree common - CVE-2026-41686
Claude SDK for TypeScript has Insecure Default File Permissi - CVE-2026-39861
Claude Code: Sandbox Escape via Symlink Following Allows Arb - CVE-2026-35603
Claude Code: Insecure System-Wide Configuration Loading Enab - CVE-2026-34451
Claude SDK for TypeScript: Memory Tool Path Validation Allow
Same weakness: CWE-276
- CVE-2026-0539
Local Privilege Escalation in pcvisit service client - CVE-2026-6823
HKUDS OpenHarness Insecure Default Remote Channel Allowlist - CVE-2026-6819
HKUDS OpenHarness Plugin Management Command Exposure - CVE-2026-39454
SKYSEA Client View 安全漏洞 - CVE-2026-30811
Missing Authorization in Configuration Ajax Endpoint leads t
V. Comments for CVE-2026-34450
No comments yet