Headline
GHSA-7mv8-j34q-vp7q: @anthropic-ai/claude-code has Sed Command Validation Bypass that Allows Arbitrary File Writes
Due to an error in sed command parsing, it was possible to bypass the Claude Code read-only validation and write to arbitrary files on the host system.
Users on standard Claude Code auto-update will have received this fix automatically. Users performing manual updates are advised to update to the latest version.
Thank you to Adam Chester - SpecterOps for reporting this issue!
- GitHub Advisory Database
- GitHub Reviewed
- CVE-2025-64755
@anthropic-ai/claude-code has Sed Command Validation Bypass that Allows Arbitrary File Writes
High severity GitHub Reviewed Published Nov 20, 2025 in anthropics/claude-code • Updated Nov 20, 2025
Package
npm @anthropic-ai/claude-code (npm)
Affected versions
< 2.0.31
Due to an error in sed command parsing, it was possible to bypass the Claude Code read-only validation and write to arbitrary files on the host system.
Users on standard Claude Code auto-update will have received this fix automatically. Users performing manual updates are advised to update to the latest version.
Thank you to Adam Chester - SpecterOps for reporting this issue!
References
- GHSA-7mv8-j34q-vp7q
Published to the GitHub Advisory Database
Nov 20, 2025
Last updated
Nov 20, 2025