Hacker News
Claude Cowork Sandbox-Escape Chain Reportedly Escalates Local Code Execution to Root
A disclosed vulnerability chain in Anthropic's Claude Cowork reportedly bypasses the product's isolation layers, letting an attacker with local code execution escalate to root inside its Linux sandbox. If accurate, it reinforces that agent 'sandboxes' are a security boundary builders must not over-trust when running untrusted code. (Single security-roundup source — treat as unconfirmed pending a primary advisory.)
Source
↳ Follow the thread