According to reporting indexed by itsecuritynews.info from GBHackers Security, security researcher Joernchen disclosed a vulnerability in Anthropic’s Claude Code CLI that allowed execution of arbitrary system commands via a single crafted deeplink URL. The flaw, described as stemming from insecure CLI flag parsing during deeplink handling in researcher writeups reported by 0day.click and diginews.johandenoyer.fr, was fixed in Claude Code version 2.1.118, per the itsecuritynews.info article. Public coverage highlights how convenience features that invoke local CLIs can become remote code execution vectors when parsing and validation are incomplete.
