Browse all 28 CVE security advisories affecting anthropics. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Anthropics operates as an artificial intelligence research laboratory, primarily developing large language models like Claude for enterprise and consumer applications. With twenty-eight recorded Common Vulnerabilities and Exposures (CVEs), the organization’s historical attack surface has predominantly featured server-side request forgery and cross-site scripting flaws within its web interfaces and API gateways. These vulnerabilities typically stem from insufficient input validation in legacy backend services rather than core model architecture failures. Notably, the company has maintained a relatively stable security posture compared to broader industry trends, avoiding major data breaches or widespread exploitation incidents. Most disclosed issues have been resolved through routine patching cycles, indicating a mature incident response framework. The focus remains on securing infrastructure supporting model training and inference, ensuring that the primary risk vectors are contained within standard web application layers rather than compromising the underlying AI systems themselves.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-34450 | Claude SDK for Python: Insecure Default File Permissions in Local Filesystem Memory Tool — anthropic-sdk-pythonCWE-276 | 4.4 | - | 2026-03-31 |
| CVE-2026-34452 | Claude SDK for Python: Memory Tool Path Validation Race Condition Allows Sandbox Escape — anthropic-sdk-pythonCWE-59 | 8.4 | - | 2026-03-31 |
This page lists every published CVE security advisory associated with anthropics. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.