SCA: security update for @anthropic-ai/claude-code (GHSA-9f65-56v6-gxw7)

high Tenable Self-Hosted Container Security Plugin ID 427899

Description

There are packages installed that are affected by a vulnerability referenced in the following CVE:

- Claude Code is an agentic coding tool. Claude Code extensions in VSCode and forks (e.g., Cursor, Windsurf,
and VSCodium) and JetBrains IDEs (e.g., IntelliJ, Pycharm, and Android Studio) are vulnerable to
unauthorized websocket connections from an attacker when visiting attacker-controlled webpages. Claude
Code for VSCode IDE extensions versions 0.2.116 through 1.0.23 are vulnerable. For Jetbrains IDE plugins,
Claude Code [beta] versions 0.1.1 through 0.1.8 are vulnerable. In VSCode (and forks), exploitation would
allow an attacker to read arbitrary files, see the list of files open in the IDE, get selection and
diagnostics events from the IDE, or execute code in limited situations where a user has an open Jupyter
Notebook and accepts a malicious prompt. In JetBrains IDEs, an attacker could get selection events, a list
of open files, and a list of syntax errors. Claude released a patch for this issue on June 13th, 2025.
Although Claude Code auto-updates when a user launch it and auto-updates the extensions, users should take
the following steps, though the exact steps depend on one's integrated development environment (IDE). For
VSCode, Cursor, Windsurf, VSCodium, and other VSCode forks, check the extension Claude Code for VSCode.
Open the list of Extensions (View->Extensions), look for Claude Code for VSCode among installed
extensions, update or uninstall any version prior to 1.0.24, and restart the IDE. For JetBrains IDEs
including IntelliJ, PyCharm, and Android Studio, check the plugin Claude Code [Beta]. Open the Plugins
list, look for Claude Code [Beta] among installed extensions, update or uninstall any version prior to
0.1.9, and restart the IDE. (CVE-2025-52882)

See Also

https://github.com/advisories/GHSA-9f65-56v6-gxw7

Plugin Details

Severity: High

ID: 427899

Version: Revision 1.10

Type: Local

Family: SCA Checks

Published: 6/24/2025

Updated: 7/2/2026

Supported Sensors: Tenable Cloud Security, Tenable Self-Hosted Container Security

Risk Information

VPR

Risk Factor: Medium

Score: 6.9

Percentile: 97

Vendor

Vendor Severity: High

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 5.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS Score Source: CVE-2025-52882

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

CVSS v4

Risk Factor: High

Base Score: 8.8

Threat Score: 5.9

Threat Vector: CVSS:4.0/E:U

Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N

Vulnerability Information

Exploit Ease: No known exploits are available

Patch Publication Date: 6/23/2025

Vulnerability Publication Date: 6/23/2025

Reference Information

CVE: CVE-2025-52882