ACCORDING TO THE MINISTRY OF INDUSTRY AND INFORMATION TECHNOLOGY'S WEB SECURITY THREATS AND GAP INFORMATION SHARING PLATFORM (NVDB) ON JULY 9, AI Programming Tools Claude Code There is a security back door hazard and the affected versions are 2.1.91 to 2.1.196。

NVDB claims that Claude Code is Anthropic THE DEVELOPMENT OF THE AI PROGRAMMING TOOL, WHICH ALLOWS FOR THE PREPARATION AND REPAIR OF THE CODE ACCORDING TO THE WORD REQUIREMENTS; THE BUILT-IN MONITORING MECHANISM OF THE AFFECTED VERSION, WHICH TRANSMITS SENSITIVE INFORMATION ABOUT THE LOCATION OF THE USER, IDENTIFICATION, ETC. TO THE REMOTE SERVER WITHOUT THE USER ' S CONSENT。
The Platform recommends that relevant units and users conduct a mapping exercise to immediately unload or upgrade the development terminals for the installation of the affected version to the latest security version of the cleared back door code, and to enhance access control and traffic monitoring for the development of tools within the core business segment。