Vulnerability in Cline
CVE-2026-59723
Cline is an autonomous coding agent as an SDK, IDE extension, or CLI assistant. Prior to 3.0.30, the Cline Hub dashboard server launched by the cline dashboard command accepts WebSocket connections on the /browser endpoint without validati…
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H.
Affected products
- Cline — versions < 3.0.30
Weakness classification (CWE)
References
- security-advisories@github.com (x_refsource_CONFIRM)
- security-advisories@github.com (x_refsource_MISC)
- security-advisories@github.com (x_refsource_MISC)
- security-advisories@github.com (x_refsource_MISC)
Frequently asked questions
- What is CVE-2026-59723?
- CVE-2026-59723 is a high-severity vulnerability in Cline, classified under Origin Validation Error. CVSS score: 8.8/10. Published 2026-07-08.
- How severe is CVE-2026-59723?
- High severity. CVSS v3 base score is 8.8 out of 10.