cvedb.io
CVE-2026-35570
HIGH · CVSS 8.4
EPSS exploitation probability: 0%
Published 2026-04-21T00:16:28.877 · Last modified 2026-06-17T10:40:47.673

Summary

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Versions prior to 0.5.1 have a logic flaw in `bashToolHasPermission()` inside `src/tools/BashTool/bashPermissions.ts`. When the sandbox auto-allow feature is active and no explicit deny rule is configured, the function returns an `allow` result immediately — before the path constraint filter (`checkPathConstraints`) is ever evaluated. This allows commands containing path traversal sequences (e.g., `../../../../../etc/passwd`) to bypass directory restrictions entirely. Version 0.5.1 contains a patch for the issue.

Affected products

gitlawb — openclaude

Does this affect you?

Add your gear to cvedb and we'll alert you only when gitlawb ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.