CVE 9.7 CRITICAL

Dive has Cross-Site Scripting vulnerability that can escalate to Remote Code Execution_CVE-2025-66580

December 19, 2025 invoker category_cve

9.7 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Description

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. A critical Stored Cross-Site Scripting (XSS) vulnerability exists in versions prior to 0.11.1 in the Mermaid diagram rendering component. The application allows the execution of arbitrary JavaScript via `javascript:`. An attacker can exploit this to inject a malicious Model Context Protocol (MCP) server configuration, leading to Remote Code Execution (RCE) on the victim's machine when the node is clicked. Version 0.11.1 fixes the issue.

AI Analysis

Critical Stored Cross-Site Scripting (XSS) vulnerability in Mermaid diagram rendering component, allowing Remote Code Execution (RCE) on the victim's machine

Basic Information

ID CVE-2025-66580

Source GitHub_M

Published Dec 19, 2025 at 16:37

Affected Product

Vendor OpenAgentPlatform

Product Dive

Version < 0.11.1

Affected Versions OpenAgentPlatform Dive < 0.11.1

CWE Classification

CWE-94

AI Assessment

AI Score 9.7 / 10

AI Severity Critical

Vendor OpenAgentPlatform

Product Dive

Version < 0.11.1

References

github.com /OpenAgentPlatform/Dive/security/advisories/GHSA-xv8m-365j-x6h2

{
    "lastseen": "",
    "description": "Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. A critical Stored Cross-Site Scripting (XSS) vulnerability exists in versions prior to 0.11.1 in the Mermaid diagram rendering component. The application allows the execution of arbitrary JavaScript via `javascript:`. An attacker can exploit this to inject a malicious Model Context Protocol (MCP) server configuration, leading to Remote Code Execution (RCE) on the victim's machine when the node is clicked. Version 0.11.1 fixes the issue.",
    "published": "2025-12-19T16:37:52.189Z",
    "modified": "2025-12-19T16:37:52.189Z",
    "type": "cve",
    "title": "Dive has Cross-Site Scripting vulnerability that can escalate to Remote Code Execution",
    "source": "GitHub_M",
    "references": "https://github.com/OpenAgentPlatform/Dive/security/advisories/GHSA-xv8m-365j-x6h2",
    "id": "CVE-2025-66580",
    "bulletinFamily": "",
    "cwe": [
        "CWE-94"
    ],
    "cvelist": null,
    "sourceData": "OpenAgentPlatform Dive < 0.11.1",
    "sourceHref": "",
    "cvss": {
        "score": 9.7,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Dive",
    "version": "< 0.11.1",
    "vendor": "OpenAgentPlatform",
    "ai_description": "Critical Stored Cross-Site Scripting (XSS) vulnerability in Mermaid diagram rendering component, allowing Remote Code Execution (RCE) on the victim's machine",
    "ai_severity": "Critical",
    "ai_vendor": "OpenAgentPlatform",
    "ai_product": "Dive",
    "ai_version": "< 0.11.1",
    "ai_score": 9.7
}

💭 Join the Security Discussion ❌ Cancel Reply