星球日报
星球日报|Jul 08, 2026 05:56
[Ministry of Industry and Information Technology Issues Risk Warning on Security Backdoor Vulnerabilities in AI Programming Tool Claude Code] Odaily Planet Daily News: Recently, the Network Security Threat and Vulnerability Information Sharing Platform (NVDB) of the Ministry of Industry and Information Technology detected security backdoor vulnerabilities in the AI programming tool Claude Code, posing serious risks. Claude Code, developed by the U.S.-based company Anthropic, is an AI programming tool capable of autonomously completing tasks such as code writing and debugging based on textual requirements. Due to its built-in monitoring mechanism, it can transmit sensitive information such as user location and identity identifiers to remote servers without user consent. The affected versions of Claude Code are 2.1.91 to 2.1.196. Relevant organizations and users are advised to immediately conduct comprehensive inspections. For development terminals with the affected versions installed, it is recommended to uninstall or upgrade to the latest secure version that has removed the backdoor code. Additionally, strengthen the control of external connection permissions and traffic monitoring for development tools within core business network segments to prevent unauthorized transmission of sensitive data.
+4
Mentioned
Share To

Timeline

HotFlash

APP

X

Telegram

Facebook

Reddit

CopyLink

Hot Reads