{"id":211890,"date":"2026-02-09T12:30:00","date_gmt":"2026-02-09T17:30:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/02\/09\/new-zero-click-flaw-in-claude-extensions-anthropic-declines-fix\/"},"modified":"2026-02-10T06:35:13","modified_gmt":"2026-02-10T11:35:13","slug":"new-zero-click-flaw-in-claude-extensions-anthropic-declines-fix","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/02\/09\/new-zero-click-flaw-in-claude-extensions-anthropic-declines-fix\/","title":{"rendered":"New Zero-Click Flaw in Claude Extensions, Anthropic Declines Fix"},"content":{"rendered":"<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/zeroclick-flaw-claude-dxt\/\">New Zero-Click Flaw in Claude Extensions, Anthropic Declines Fix<\/a><\/p>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/zeroclick-flaw-claude-dxt\/\">https:\/\/www.infosecurity-magazine.com\/news\/zeroclick-flaw-claude-dxt\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-09 12:30:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.infosecurity-magazine.com\">www.infosecurity-magazine.com<\/a><\/p>\n<p>A single Google Calendar event can silently compromise a system running Claude Desktop Extensions, according to security researchers at browser security provider LayerX.<\/p>\n<p>In a new report published on February 9, LayerX, disclosed a new critical vulnerability affecting 50 Claude Desktop Extensions (DXT).<\/p>\n<p>If exploited this flaw allows an attacker to perform remote code executions (RCE) on a system running a vulnerable extension, without needing for the victim to click on anything.<\/p>\n<p>This issue was allocated a maximum-severity rating (CVSS of 10.0) and could impact over 10,000 active Claude DXT users.<\/p>\n<p>Roy Paz, principal security researcher at LayerX, said his team reported the vulnerability to Anthropic, the company behind the Claude large language model (LLM)and associated services, including Claude DTX. However, Anthropic \u201cdecided not to fix it at this time,\u201d Paz added<\/p>\n<h2><strong>Claude DXT: Full Privileges on the Host System<\/strong><\/h2>\n<p>Claude Desktop Extensions are different from traditional browser extensions. Like a typical Chrome browser extension, a Claude DXT offers a one-click installation process.<\/p>\n<p>While a Chrome extension is a simple browser add-on comprising .crx packages, Claude DXT are Model Context Protocol (MCP) servers packaged and distributed through Anthropic\u2019s extension marketplace. Each DXT is made up of a .mcpb bundle, which Paz likened to a .zip archive file, that includes the MCP server implementation code as well as a manifest defining the extension\u2019s exposed functions.<\/p>\n<p>The differences go even further in the authorizations granted to Claude DXT. While Chrome extensions run inside a tightly sandboxed browser environment and don\u2019t have direct system access, Claude DXT execute without sandboxing and with full privileges on the host system, LayerX\u2019s Paz noted.<\/p>\n<p>As a result, Claud DXT can perform sensitive commands, such as:<\/p>\n<ul>\n<li>Read arbitrary files<\/li>\n<li>Execute system commands<\/li>\n<li>Access stored credentials<\/li>\n<li>Modify operating system settings<\/li>\n<\/ul>\n<h2><strong>Claude DXT&#8230;<\/strong><\/h2>\n<p><a href=\"https:\/\/www.infosecurity-magazine.com\/news\/zeroclick-flaw-claude-dxt\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>New Zero-Click Flaw in Claude Extensions, Anthropic Declines Fix https:\/\/www.infosecurity-magazine.com\/news\/zeroclick-flaw-claude-dxt\/ Publish Date: 2026-02-09 12:30:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":211891,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/assets.infosecurity-magazine.com\/webpage\/og\/29a0a204-0c2d-41b5-aa85-75f3c6ef78ec.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[18,17,27],"class_list":["post-211890","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-large-language-model","tag-llm","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/211890"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=211890"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/211890\/revisions"}],"predecessor-version":[{"id":211892,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/211890\/revisions\/211892"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/211891"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=211890"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=211890"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=211890"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}