Arbitrary External URL Requests in Eclipse Theia AI Chat
CVE-2026-22551

6.7MEDIUM

Key Information:

Vendor: Eclipse Foundation
Status: Eclipse Theia
Vendor: CVE Published:; 18 June 2026

🔔 Create Eclipse Foundation Vulnerability Alert

What is CVE-2026-22551?

In affected versions of Eclipse Theia, the AI chat feature inadvertently allows the rendering of Markdown image tags from AI-generated responses. This functionality triggers HTTP requests to arbitrary external URLs, which can be exploited by attackers. By combining this with prompt injection in a malicious workspace, an attacker can manipulate the AI agent to generate image URLs that carry sensitive data from the workspace or conversation context. These URLs could lead to the exfiltration of this sensitive information to servers controlled by the attacker. The release of version 1.71.0 introduces workspace trust enforcement that mitigates this risk by disabling AI capabilities in untrusted environments, enhancing security for users.

Affected Version(s)

Eclipse Theia 0 < 1.71.0

References

https://gitlab.eclipse.org/security/cve-assignment/-/work...

CVSS V4

Score:

6.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 18, 2026
Vulnerability Reserved
May 22, 2026

Credit

Piotr Ryciak (https://gitlab.eclipse.org/void01)

CVE-2026-22551 Data

JSON