CVE-2026-35020

Name of the Vulnerable Software and Affected Versions Anthropic Claude Code CLI and Claude Agent SDK (affected versions not specified)

Description Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection issue in the command lookup helper and deep-link terminal launcher. Local attackers can execute arbitrary commands by manipulating the TERMINAL environment variable. Injecting shell metacharacters into the TERMINAL variable allows the construction and execution of shell commands with shell=true via /bin/sh. This can be triggered during normal CLI execution and through the deep-link handler, resulting in arbitrary command execution with the privileges of the user running the CLI.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.