A severe remote code execution (RCE) vulnerability has been discovered in Anthropic’s Claude Code, the AI-powered coding assistant. The flaw was publicly disclosed on May 12, 2026, by security researcher Joernchen of 0day.click. The Flaw allowed attackers to inject arbitrary settings, including shell commands, into a victim’s Claude Code instance through crafted claude-cli:// deeplinks. The vulnerability has […]
The post Claude Code RCE Vulnerability Allow Attackers Execute Commands via Malicious Deeplinks appeared first on Cyber Security News.