
Claude Cowork Flaw Lets Attackers Escape Bubblewrap Sandbox and Gain Root Access
A newly disclosed sandbox escape chain in Anthropic’s Claude Cowork for Windows allows an attacker with local code execution to obtain root access inside the product’s isolated Ubuntu VM and bypass its network egress restrictions entirely. Claude Cowork, a component of Claude Desktop for Windows, runs Claude Code inside a Hyper-V-isolated Ubuntu VM so that […]
The post Claude Cowork Flaw Lets Attackers Escape Bubblewrap Sandbox and Gain Root Access appeared first on Cyber Security News.