CVE-2026-44691
HighCVSS 8.8Exploitation Probability (EPSS)
Low risk14th percentile — higher than 14% of all known CVEs
Summary
In Eclipse Theia versions prior to 1.69.0, custom task definitions in workspace files could be executed without requiring workspace trust. An attacker could craft a malicious repository that, when cloned and opened in Theia, leads to execution of arbitrary commands with the user's privileges.
Risk Assessment
The organization may be exposed to the execution of malicious code, potentially leading to data loss or system takeover. Combined with AI chat features, the risk of automatically triggering malicious commands increases.
Recommendation
It is recommended to update Eclipse Theia to version 1.69.0 or later and to implement a workspace trust policy to minimize the risk of unauthorized task execution.
Original NVD description (English source)
In Eclipse Theia versions prior to 1.69.0, custom task definitions in workspace files (e.g. .theia/tasks.json, .vscode/tasks.json) could be executed without requiring workspace trust. An attacker could craft a malicious repository that, when cloned and opened in Theia, leads to execution of arbitrary commands with the user's privileges. In combination with AI chat features and a workspace .theia/settings.json that disabled tool confirmation, this could be triggered automatically by sending a message in the AI chat.

