Cross-Origin WebSocket Hijack Vulnerability in Cline Coding Agent
CVE-2026-44211

9.6CRITICAL

Key Information:

Vendor: Cline
Status: Cline
Vendor: CVE Published:; 1 June 2026

What is CVE-2026-44211?

The Cline Coding Agent, which operates as an SDK, IDE extension, or CLI assistant, has a vulnerability that allows for cross-origin WebSocket hijacking in its Kanban servers. This vulnerability affects all versions up to and including 2.13.0. There are currently no patches available to mitigate this issue, potentially exposing users to unauthorized access and data breaches. Developers using Cline products should take immediate measures to assess their exposure and secure their applications.

Affected Version(s)

cline <= 2.13.0

References

https://github.com/cline/cline/security/advisories/GHSA-5...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.6

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 1, 2026
Vulnerability Reserved
May 5, 2026

CVE-2026-44211 Data

JSON