Agentic Coding Tool Vulnerability in Claude Code by Anthropic
CVE-2026-54316

6MEDIUM

Key Information:

Vendor: Anthropics
Status: Claude-code
Vendor: CVE Published:; 23 June 2026

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2026-54316?

The Claude Code agentic coding tool contains a vulnerability that allows unapproved access to model repositories on the huggingface.co domain. From versions 0.2.54 to 2.1.163, the WebFetch tool trusted the huggingface.co bare hostname, enabling any path within that domain to be accessed without user consent. This flaw allows an attacker to utilize untrusted content injected into the Claude Code interface to send unauthorized WebFetch requests, potentially downloading sensitive information from attacker-controlled repositories, such as files or environment variables. The issue has been resolved in version 2.1.163.

Affected Version(s)

claude-code >= 0.2.54, < 2.1.163

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

cve-2026-54316-lab
Created by InertFluid

References

https://github.com/anthropics/claude-code/security/adviso...

x_refsource_CONFIRM

CVSS V4

Score:

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 23, 2026
🟡
Public PoC available
Jun 18, 2026
👾
Exploit known to exist
Jun 18, 2026
Vulnerability Reserved
Jun 12, 2026

CVE-2026-54316 Data

JSON

Anthropics