VYPR
Medium severity6.8NVD Advisory· Published May 13, 2026· Updated Jun 2, 2026

CVE-2026-44467

CVE-2026-44467

Description

The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. From 1.2581.0 to before 1.4304.0, Claude Desktop's SSH remote development feature verified only whether a hostname existed in ~/.ssh/known_hosts without comparing the server's presented host key against the stored key. This allowed a network-positioned attacker to present an arbitrary SSH host key and have the connection silently accepted, enabling a man-in-the-middle attack on remote development sessions. Successful exploitation required the attacker to be in a network position to intercept SSH traffic (e.g., via ARP spoofing, rogue Wi-Fi, or DNS poisoning) and the target hostname to already have an entry in the victim's known_hosts file. This vulnerability is fixed in 1.4304.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Anthropic/Claude Codeinferred2 versions
    >=1.2581.0,<1.4304.0+ 1 more
    • (no CPE)range: >=1.2581.0,<1.4304.0
    • (no CPE)range: <1.4304.0
  • cpe:2.3:a:anthropic:claude_desktop:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:anthropic:claude_desktop:*:*:*:*:*:*:*:*range: >=1.2581.0,<1.4304.0
    • (no CPE)range: <1.4304.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.