CVE-2025-52882 | anthropics claude-code up to 1.0.23 missing origin validation in websockets (GHSA-9f65-56v6-gxw7)

Inserito da Angelo Barbosa | Giu 25, 2025 | CVE

A vulnerability, which was classified as critical, was found in anthropics claude-code up to 1.0.23. Affected is an unknown function. The manipulation leads to missing origin validation in websockets.

This vulnerability is traded as CVE-2025-52882. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-52882 | anthropics claude-code up to 1.0.23 missing origin validation in websockets (GHSA-9f65-56v6-gxw7)

Post correlati

CVE-2024-37521 | zwwooooo zBench Plugin up to 1.4.2 on WordPress cross site scripting

CVE-2024-20737 | Adobe After Effects up to 23.6.2/24.1 out-of-bounds (apsb24-09)

CVE-2024-32844 | Ivanti EPM 2024/up to 2022 SU5 sql injection

CVE-2025-24830 | Acronis Cyber Protect Cloud Agent 36943/37758/38235/38565/39185 untrusted search path