Local File Read Vulnerability in Claude Code Tool by Anthropic
CVE-2026-46406

4.4MEDIUM

Key Information:

Vendor: Anthropics
Status: Claude-code
Vendor: CVE Published:; 29 June 2026

What is CVE-2026-46406?

The Claude Code tool, developed by Anthropic, features a local file read vulnerability that affects versions between 2.1.59 and 2.1.128. The issue arises from the /copy command writing outputs to a hardcoded and predictable file path (/tmp/claude/response.md) without sufficient security measures. This results in files being created with public read permissions in a directory open to traversal by any user. As a consequence, a local attacker could potentially read sensitive information from a privileged user's response or leverage a symlink attack to manipulate files. The vulnerability is addressed and resolved in version 2.1.128.

Affected Version(s)

claude-code >= 2.1.59, < 2.1.128

References

https://github.com/anthropics/claude-code/security/adviso...

x_refsource_CONFIRM

CVSS V4

Score:

4.4

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 29, 2026
Vulnerability Reserved
May 13, 2026

CVE-2026-46406 Data

JSON

Anthropics

What is CVE-2026-46406?

Affected Version(s)

References

CVSS V4

Timeline