Description

Claude SDK for TypeScript provides access to the Claude API from server-side TypeScript or JavaScript applications. From version 0.79.0 to before version 0.81.0, the local filesystem memory tool in the Anthropic TypeScript SDK validated model-supplied paths using a string prefix check that did not append a trailing path separator. A model steered by prompt injection could supply a crafted path that resolved to a sibling directory sharing the memory root's name as a prefix, allowing reads and writes outside the sandboxed memory directory. This issue has been patched in version 0.81.0.

INFO

Published Date :

2026-03-31T21:35:21.018Z

Last Modified :

2026-04-01T18:57:05.442Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2026-34451 vulnerability.

Vendors Products
Anthropics
  • Anthropic-sdk-typescript
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-34451.

URL Resource
https://github.com/anthropics/anthropic-sdk-typescript/commit/0ac69b3438ee9c96b21a7d3c39c07b7cdb6995d9 cve-icon cve-icon
https://github.com/anthropics/anthropic-sdk-typescript/releases/tag/sdk-v0.81.0 cve-icon cve-icon
https://github.com/anthropics/anthropic-sdk-typescript/security/advisories/GHSA-5474-4w2j-mq4c cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability