A zero-click vulnerability in Claude Desktop Extensions has exposed over 10,000 users to remote code execution through malicious calendar invites.

A zero-click flaw in Anthropic’s Claude Desktop Extensions allows attackers to trigger remote code execution via Google ...