CVE-2026-7574

Name of the Vulnerable Software and Affected Versions Anthropic Claude Desktop Cowork VM versions 1.1348.0 through 1.2278.0

Description The Cowork VM image handling process validates only the presence of the file and a version marker string before booting rootfs.img, failing to verify the integrity of the image content at the time of use. A local attacker with unprivileged code execution as the victim macOS user can modify the VM root filesystem image to ensure it is trusted during subsequent boots. This allows for persistent arbitrary code execution within the VM and unauthorized access to host-mounted directories. This issue is characterized by a missing support for integrity check, which is a failure to verify that data has not been altered by an unauthorized party.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.