CVE-2026-35021

CVE-2026-35021 is a security vulnerability that is still awaiting full analysis and scoring.

Key facts

Description

Rejected reason: This CVE ID has been rejected by its CVE Numbering Authority (CNA). It was determined that the affected code path cannot be triggered through normal usage of Claude Code.

Frequently asked questions

What is CVE-2026-35021?
Rejected reason: This CVE ID has been rejected by its CVE Numbering Authority (CNA). It was determined that the affected code path cannot be triggered through normal usage of Claude Code.
Is CVE-2026-35021 being actively exploited?
It is not currently listed in CISA's Known Exploited Vulnerabilities catalog, and no EPSS exploit-prediction score is available yet.
How do I fix CVE-2026-35021?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
Does CVE-2026-35021 have an EU (EUVD) identifier?
Yes. CVE-2026-35021 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2026-19440.
When was CVE-2026-35021 published?
CVE-2026-35021 was published on 2026-04-06 and last updated on 2026-05-29.