Claude Code is an agentic coding tool. Prior to version 1.0.39, when running on a machine with Yarn 3.0 or above, Claude Code could have been tricked to execute code contained in a project via yarn plugins before the user accepted the startup trust dialog. Exploiting this would have required a user to start Claude Code in an untrusted directory and to be using Yarn 3.0 or above. This issue has been patched in version 1.0.39.
Metrics
Affected Vendors & Products
No data.
No data.
No data.
No data.
Advisories
| Source | ID | Title |
|---|---|---|
 Github GHSA |
GHSA-5hhx-v7f6-x7gv | Claude Code vulnerable to command execution prior to startup trust dialog |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 19 Nov 2025 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Claude Code is an agentic coding tool. Prior to version 1.0.39, when running on a machine with Yarn 3.0 or above, Claude Code could have been tricked to execute code contained in a project via yarn plugins before the user accepted the startup trust dialog. Exploiting this would have required a user to start Claude Code in an untrusted directory and to be using Yarn 3.0 or above. This issue has been patched in version 1.0.39. | |
| Title | Claude Code vulnerable to command execution prior to startup trust dialog | |
| Weaknesses | CWE-94 | |
| References |
| |
| Metrics |
cvssV4_0
|
MITRE
Status: PUBLISHED
Assigner: GitHub_M
Published:
Updated: 2025-11-19T17:35:17.349Z
Reserved: 2025-11-17T20:55:34.692Z
Link: CVE-2025-65099
Vulnrichment
No data.
NVD
Status : Awaiting Analysis
Published: 2025-11-19T18:15:51.837
Modified: 2025-11-19T19:14:59.327
Link: CVE-2025-65099
Redhat
No data.
OpenCVE Enrichment
No data.