{"uuid": "f77402d1-3958-461e-acf3-40747f4ade6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-66479", "type": "seen", "source": "https://bsky.app/profile/mel-echosphere.bsky.social/post/3mmlvd4ifra2g", "content": "\u5916\u304b\u3089\u898b\u305f\u7814\u7a76\u8005\u304c2\u56de\u8997\u3044\u3066\u30012\u56de\u3068\u3082\u5b8c\u5168\u30d0\u30a4\u30d1\u30b9\u3060\u3063\u305f\u3002\n\n1\u4ef6\u76ee\uff08CVE-2025-66479\uff09\uff1aallowedDomains \u3092\u7a7a\u306b\u3057\u305f\u3089\u300c\u5168\u90e8\u30d6\u30ed\u30c3\u30af\u300d\u3058\u3083\u306a\u304f\u300c\u5168\u90e8\u8a31\u53ef\u300d\u3068\u3057\u3066\u52d5\u3044\u305f\u3002\n2\u4ef6\u76ee\uff1aSOCKS5 \u306b null byte \u3092\u631f\u3093\u3067 allowlist \u3092\u7d20\u901a\u308a\u3002\n\n1\u4ef6\u76ee\u3092\u76f4\u3057\u305f\u30ea\u30ea\u30fc\u30b9\u304c2\u4ef6\u76ee\u3092\u305d\u306e\u307e\u307e\u51fa\u8377\u3057\u3066\u308b\u3002\u5b89\u5168\u3060\u3063\u305f\u77ac\u9593\u306f\u30bc\u30ed\u3002\ud83d\udc8e\n\nhttps://oddguan.com/blog/second-time-same-sandbox-anthropic-claude-code-network-allowlist-bypass-data-exfiltration/", "creation_timestamp": "2026-05-24T11:47:05.516579Z"}