DeepChat Cross-Site Scripting(XSS) escalate to Remote Code Execution(RCE)_CVE-2025-66222

9.7 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Description

DeepChat is a smart assistant uses artificial intelligence. In 0.5.0 and earlier, there is a Stored Cross-Site Scripting (XSS) vulnerability in the Mermaid diagram renderer allows an attacker to execute arbitrary JavaScript within the application context. By leveraging the exposed Electron IPC bridge, this XSS can be escalated to Remote Code Execution (RCE) by registering and starting a malicious MCP (Model Context Protocol) server.

AI Analysis

Stored Cross-Site Scripting (XSS) vulnerability in the Mermaid diagram renderer that can be escalated to Remote Code Execution (RCE)

Basic Information

ID CVE-2025-66222

Source GitHub_M

Published Dec 3, 2025 at 18:34

Modified Dec 3, 2025 at 19:10

Affected Product

Vendor ThinkInAIXYZ

Product deepchat

Version < 0.5.0

Affected Versions ThinkInAIXYZ deepchat < 0.5.0

CWE Classification

CWE-94

AI Assessment

AI Score 9.7 / 10

AI Severity Critical

Vendor ThinkInAIXYZ

Product DeepChat

Version 0.5.0 and earlier

References

{
    "lastseen": "",
    "description": "DeepChat is a smart assistant uses artificial intelligence. In 0.5.0 and earlier, there is a Stored Cross-Site Scripting (XSS) vulnerability in the Mermaid diagram renderer allows an attacker to execute arbitrary JavaScript within the application context. By leveraging the exposed Electron IPC bridge, this XSS can be escalated to Remote Code Execution (RCE) by registering and starting a malicious MCP (Model Context Protocol) server.",
    "published": "2025-12-03T18:34:44.019Z",
    "modified": "2025-12-03T19:10:17.039Z",
    "type": "cve",
    "title": "DeepChat Cross-Site Scripting(XSS) escalate to Remote Code Execution(RCE)",
    "source": "GitHub_M",
    "references": "https://github.com/ThinkInAIXYZ/deepchat/security/advisories/GHSA-v8v5-c872-mf8r\nhttps://github.com/ThinkInAIXYZ/deepchat/commit/371ca7b42e3685aee6e3f0c61e85277ed1ff4db7",
    "id": "CVE-2025-66222",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "ThinkInAIXYZ deepchat < 0.5.0",
    "sourceHref": "",
    "cvss": {
        "score": 9.7,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "deepchat",
    "version": "< 0.5.0",
    "vendor": "ThinkInAIXYZ",
    "ai_description": "Stored Cross-Site Scripting (XSS) vulnerability in the Mermaid diagram renderer that can be escalated to Remote Code Execution (RCE)",
    "ai_severity": "Critical",
    "ai_vendor": "ThinkInAIXYZ",
    "ai_product": "DeepChat",
    "ai_version": "0.5.0 and earlier",
    "ai_score": 9.7
}