Ce mail provient de l'extérieur, restons vigilants

=====================================================================

                            CERT-Renater

                Note d'Information No. 2026/VULN317
_____________________________________________________________________

DATE                : 20/03/2026

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Systems running claude-code versions prior
                                    to 2.1.53.

=====================================================================
https://github.com/anthropics/claude-code/security/advisories/GHSA-mmgp-wc2j-qcv7
_____________________________________________________________________


Workspace Trust Dialog Bypass via Repo-Controlled Settings File
High
dmckennirey-ant published GHSA-mmgp-wc2j-qcv7 Mar 18, 2026

Package
@anthropic-ai/claude-code (npm)

Affected versions
< 2.1.53

Patched versions
2.1.53


Description

Claude Code resolved the permission mode from settings files, including
the repo-controlled .claude/settings.json, before determining whether
to display the workspace trust confirmation dialog. A malicious
repository could set permissions.defaultMode to bypassPermissions in its
committed .claude/settings.json, causing the trust dialog to be silently
skipped on first open. This allowed a user to be placed into a permissive
mode without seeing the trust confirmation prompt, making it easier for
an attacker-controlled repository to gain tool execution without explicit
user consent.

Users on standard Claude Code auto-update have received this fix already.
Users performing manual updates are advised to update to the latest
version.

Thank you to hackerone.com/cantina_xyz for reporting this issue.


Severity
High
7.7/ 10

CVSS v4 base metrics
Exploitability Metrics
Attack Vector Network
Attack Complexity Low
Attack Requirements Present
Privileges Required None
User interaction Passive
Vulnerable System Impact Metrics
Confidentiality High
Integrity High
Availability High
Subsequent System Impact Metrics
Confidentiality None
Integrity None
Availability None
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

CVE ID
CVE-2026-33068

Weaknesses
Weakness CWE-807 

=========================================================
+ CERT-RENATER        |    tel : 01-53-94-20-44         +
+ 23/25 Rue Daviel    |    fax : 01-53-94-20-41         +
+ 75013 Paris         |   email:cert@support.renater.fr +
=========================================================