CVE-2025-52882

Name of the Vulnerable Software and Affected Versions: Claude Code for VSCode IDE extensions versions 0.2.116 through 1.0.23 Claude Code [beta] for JetBrains IDE plugins versions 0.1.1 through 0.1.8

Description: The issue allows unauthorized websocket connections from an attacker when visiting attacker-controlled webpages. This could enable an attacker to read arbitrary files, see the list of files open in the IDE, get selection and diagnostics events from the IDE, or execute code in limited situations where a user has an open Jupyter Notebook and accepts a malicious prompt in VSCode and its forks. In JetBrains IDEs, an attacker could get selection events, a list of open files, and a list of syntax errors.

Recommendations: For VSCode, Cursor, Windsurf, VSCodium, and other VSCode forks, check the extension Claude Code for VSCode, update or uninstall any version prior to 1.0.24, and restart the IDE. For JetBrains IDEs including IntelliJ, PyCharm, and Android Studio, check the plugin Claude Code [Beta], update or uninstall any version prior to 0.1.9, and restart the IDE.