Home

Description

The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. From 1.2581.0 to before 1.4304.0, Claude Desktop's SSH remote development feature verified only whether a hostname existed in ~/.ssh/known_hosts without comparing the server's presented host key against the stored key. This allowed a network-positioned attacker to present an arbitrary SSH host key and have the connection silently accepted, enabling a man-in-the-middle attack on remote development sessions. Successful exploitation required the attacker to be in a network position to intercept SSH traffic (e.g., via ARP spoofing, rogue Wi-Fi, or DNS poisoning) and the target hostname to already have an entry in the victim's known_hosts file. This vulnerability is fixed in 1.4304.0.

PUBLISHED Reserved 2026-05-06 | Published 2026-05-13 | Updated 2026-05-14 | Assigner GitHub_M




HIGH: 7.4CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Problem types

CWE-297: Improper Validation of Certificate with Host Mismatch

CWE-322: Key Exchange without Entity Authentication

Product status

>= 1.2581.0, < 1.4304.0
affected

References

github.com/...e-code/security/advisories/GHSA-3rwf-2g6p-c2f9

cve.org (CVE-2026-44467)

nvd.nist.gov (CVE-2026-44467)

Download JSON