CVE-2025-59041: 
JavaScript vulnerability analysis and mitigation

CVE-2025-59041 affects Claude Code versions prior to 1.0.105, where a vulnerability in the git email configuration could lead to arbitrary code execution. The vulnerability was discovered by the NVIDIA AI Red Team and disclosed on September 9, 2025. The issue specifically affects the npm package @anthropic-ai/claude-code (GitHub Advisory).

The vulnerability stems from improper control of code generation (CWE-94) where Claude Code executes commands templated with git config user.email at startup. The vulnerability has received a CVSS v4.0 base score of 8.7 (High), with the vector string CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N. This indicates network attack vector, low attack complexity, no privileges required, and passive user interaction required (GitHub Advisory).

The vulnerability allows attackers to execute arbitrary code before a user accepts the workspace trust dialog. The impact metrics indicate high severity across confidentiality, integrity, and availability of the vulnerable system, though with no impact on subsequent systems (GitHub Advisory).

The vulnerability has been patched in version 1.0.105 of Claude Code. Users on standard Claude Code auto-update will have received this fix automatically. Users performing manual updates are advised to update to the latest version (GitHub Advisory).