A vulnerability was found in Eclipse Theia up to 1.70.x and classified as problematic . Affected is an unknown function of the component Repository Handler . Executing a manipulation can lead to inclusion of functionality from untrusted control sphere. This vulnerability is registered as CVE-2026-46580 . The attack needs to be launched locally. No exploit is available. It is suggested to upgrade the affected component.