CVE-2025-65099 | anthropics claude-code up to 1.0.38 Yarn code injection (GHSA-5hhx-v7f6-x7gv)

A vulnerability marked as critical has been reported in anthropics claude-code up to 1.0.38. This impacts an unknown function of the component Yarn. This manipulation causes code injection.

This vulnerability is handled as CVE-2025-65099. The attack can be initiated remotely. There is not any exploit available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More