CVE-2026-47092: Claude HUD Vulnerability Allows Local Code Execution

/HIGH /CVSS 7.8/10
Written by SCW Vulnerability Desk Vulnerability Intelligence
SCW vulnerabilitycvehigh-severitycode-executioncwe-427
CVE-2026-47092: Claude HUD Vulnerability Allows Local Code Execution

The National Vulnerability Database has reported CVE-2026-47092, a critical command injection vulnerability in Claude HUD through version 0.0.12. This flaw, patched in commit 234d9aa, allows a local attacker to achieve arbitrary code execution on Windows systems by manipulating the COMSPEC environment variable.

Attackers can set COMSPEC to point to an arbitrary binary path. When claude-hud performs its version check, the execFile() function then executes the attacker-supplied executable, passing cmd.exe arguments. This bypass leads directly to arbitrary code execution, earning a CVSS score of 7.8 (HIGH).

This vulnerability highlights a common pitfall in application development: relying on environment variables for critical execution paths without proper sanitization or validation. For defenders, this means any local attacker with minimal privileges could leverage this to escalate their access or persist on a compromised machine, turning a low-privilege foothold into full system control.

What This Means For You

  • If your organization uses Claude HUD, you need to ensure all installations are updated to a version beyond 0.0.12 or include commit 234d9aa. This is a local privilege escalation vector that an attacker could chain with other vulnerabilities to gain significant control over Windows systems. Don't underestimate local vulnerabilities; they are often the second step in a multi-stage attack.

Related ATT&CK Techniques

T1059.003 Windows Command Shell Execution T1574.002 DLL Side-Loading Privilege Escalation

🛡️ Detection Rules

3 rules · 6 SIEM formats

3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.

high T1574.002 Persistence

CVE-2026-47092: Claude HUD COMSPEC Manipulation for Local Code Execution

Sigma YAML — free preview 
title: CVE-2026-47092: Claude HUD COMSPEC Manipulation for Local Code Execution
id: scw-2026-05-18-ai-1
status: experimental
level: high
description: |
  Detects the exploitation of CVE-2026-47092 by identifying the claude-hud.exe process being executed with cmd.exe arguments, which is indicative of command injection via manipulation of the COMSPEC environment variable. This rule specifically targets the mechanism described in the vulnerability where an attacker sets COMSPEC to an arbitrary binary path before claude-hud performs its version check, leading to arbitrary code execution.
author: SCW Feed Engine (AI-generated)
date: 2026-05-18
references:
  - https://shimiscyberworld.com/posts/nvd-CVE-2026-47092/
tags:
  - attack.persistence
  - attack.t1574.002
logsource:
    category: process_creation
detection:
  selection:
      Image|endswith:
          - 'claude-hud.exe'
      CommandLine|contains:
          - 'cmd.exe /c'
      ParentImage|contains:
          - 'cmd.exe'
  selection_env_var:
      TargetObject|contains:
          - 'COMSPEC'
      EventType: 'registry_set'
  condition: selection AND selection_env_var
falsepositives:
  - Legitimate administrative activity

Source: Shimi's Cyber World · License & reuse

✓ Sigma · Splunk SPL Sentinel KQL Elastic QRadar AQL Wazuh Get rules for your SIEM →

Indicators of Compromise

IDTypeIndicator
CVE-2026-47092 Command Injection Claude HUD through 0.0.12
CVE-2026-47092 RCE manipulating the COMSPEC environment variable
CVE-2026-47092 RCE execFile() executing attacker-supplied executable with cmd.exe arguments

Written by SCW Vulnerability Desk

Source & Attribution
Source PlatformNVD
ChannelNational Vulnerability Database
PublishedMay 18, 2026 at 23:16 UTC

This content was AI-rewritten and enriched by Shimi's Cyber World based on the original source. All intellectual property rights remain with the original author.

Believe this infringes your rights? Submit a takedown request.

Related coverage

CVE-2026-20240 — Denial of Service

CVE-2026-20240 — In Splunk Enterprise versions below 10.2.2, 10.0.5, 9.4.11, and 9.3.12, and Splunk Cloud Platform versions below 10.4.2603.1, 10.3.2512.9, 10.2.2510.11, 10.1.2507.21, 10.0.2503.13, and 9.3.2411.129,...

vulnerabilityCVEmedium-severitydenial-of-servicecwe-20
/SCW Vulnerability Desk /MEDIUM /6.5 /⚑ 2 IOCs /⚙ 2 Sigma

Splunk Enterprise, Cloud Vulnerability Exposes Session Cookies, Sensitive Data

CVE-2026-20239 — In Splunk Enterprise versions below 10.2.2 and 10.0.5, and Splunk Cloud Platform versions below 10.3.2512.8, 10.2.2510.11, 10.1.2507.21, and 10.0.2503.13, a user with a...

vulnerabilityCVEhigh-severitycwe-532
/SCW Vulnerability Desk /HIGH /7.5 /⚑ 5 IOCs /⚙ 4 Sigma

CVE-2026-20238 — In Splunk AI Toolkit versions below 5.7.3, a low-privileged

CVE-2026-20238 — In Splunk AI Toolkit versions below 5.7.3, a low-privileged user that does not hold the 'admin' or 'power' roles could access confidential data...

vulnerabilityCVEmedium-severitycwe-863
/SCW Vulnerability Desk /MEDIUM /6.5 /⚑ 2 IOCs /⚙ 2 Sigma