CVE-2026-47091: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in jarrodwatts claude-hud
Claude HUD through 0.0.12, patched in commit 234d9aa, contains a path traversal vulnerability that allows attackers to read arbitrary files by supplying an unvalidated transcript_path value via stdin JSON. Attackers can access any file readable by the process and the file metadata is written to a persistent cache file with insufficient permissions, creating a forensic record of accessed paths that survives process exit.
AI Analysis
Technical Summary
CVE-2026-47091 is a path traversal vulnerability in the jarrodwatts claude-hud product through version 0.0.12. Attackers with low privileges can supply an unvalidated transcript_path value through stdin JSON input to read arbitrary files accessible by the process. Additionally, metadata of these accessed files is recorded in a persistent cache file with insufficient permissions, creating a forensic record that persists beyond process termination. The vulnerability is fixed in commit 234d9aa. There is no explicit vendor advisory or patch link provided, and the remediation level is not stated.
Potential Impact
An attacker with limited privileges can read any file accessible by the claude-hud process, potentially exposing sensitive information. The creation of a persistent cache file with insufficient permissions may allow unauthorized users to view a forensic record of accessed file paths, increasing information disclosure risk. The vulnerability does not require user interaction and has low attack complexity but limited scope due to required local access.
Mitigation Recommendations
A fix is available as the vulnerability is patched in commit 234d9aa. Users should update claude-hud to the patched version beyond 0.0.12. Since no official vendor advisory or patch link is provided, verify the patch status by reviewing the referenced commit or vendor repository. Until patched, restrict access to the application and its cache files to trusted users only.
CVE-2026-47091: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in jarrodwatts claude-hud
Description
Claude HUD through 0.0.12, patched in commit 234d9aa, contains a path traversal vulnerability that allows attackers to read arbitrary files by supplying an unvalidated transcript_path value via stdin JSON. Attackers can access any file readable by the process and the file metadata is written to a persistent cache file with insufficient permissions, creating a forensic record of accessed paths that survives process exit.
CVSS v4.0
Score 4.8medium
Affected software
pkg:github/jarrodwatts/claude-hudRun on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-47091 is a path traversal vulnerability in the jarrodwatts claude-hud product through version 0.0.12. Attackers with low privileges can supply an unvalidated transcript_path value through stdin JSON input to read arbitrary files accessible by the process. Additionally, metadata of these accessed files is recorded in a persistent cache file with insufficient permissions, creating a forensic record that persists beyond process termination. The vulnerability is fixed in commit 234d9aa. There is no explicit vendor advisory or patch link provided, and the remediation level is not stated.
Potential Impact
An attacker with limited privileges can read any file accessible by the claude-hud process, potentially exposing sensitive information. The creation of a persistent cache file with insufficient permissions may allow unauthorized users to view a forensic record of accessed file paths, increasing information disclosure risk. The vulnerability does not require user interaction and has low attack complexity but limited scope due to required local access.
Mitigation Recommendations
A fix is available as the vulnerability is patched in commit 234d9aa. Users should update claude-hud to the patched version beyond 0.0.12. Since no official vendor advisory or patch link is provided, verify the patch status by reviewing the referenced commit or vendor repository. Until patched, restrict access to the application and its cache files to trusted users only.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulnCheck
- Date Reserved
- 2026-05-18T19:22:26.747Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a0c25c6ec166c07b08770ef
Added to database: 05/19/2026, 08:56:38 UTC
Last enriched: 06/24/2026, 15:11:52 UTC
Last updated: 07/07/2026, 10:33:23 UTC
Views: 70
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.