5ire vulnerable to Remote Code Execution (RCE) via mermaid

9.7 / 10

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Description

5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. In versions 0.15.2 and prior, an RCE vulnerability exists in useMarkdown.ts, where the markdown-it-mermaid plugin is initialized with securityLevel: 'loose'. This configuration explicitly permits the rendering of HTML tags within Mermaid diagram nodes. This issue has not been patched at time of publication.

AI Analysis

Remote Code Execution (RCE) vulnerability via mermaid due to loose security configuration

Basic Information

ID CVE-2025-68669

Source GitHub_M

Published Dec 23, 2025 at 22:51

Affected Product

Vendor nanbingxyz

Product 5ire

Version <= 0.15.2

Affected Versions nanbingxyz 5ire <= 0.15.2

CWE Classification

CWE-79

AI Assessment

AI Score 9.7 / 10

AI Severity Critical

Vendor nanbingxyz

Product 5ire

Version 0.15.2 and prior

References

{
    "lastseen": "",
    "description": "5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. In versions 0.15.2 and prior, an RCE vulnerability exists in useMarkdown.ts, where the markdown-it-mermaid plugin is initialized with securityLevel: 'loose'. This configuration explicitly permits the rendering of HTML tags within Mermaid diagram nodes. This issue has not been patched at time of publication.",
    "published": "2025-12-23T22:51:35.848Z",
    "modified": "2025-12-23T22:51:35.848Z",
    "type": "cve",
    "title": "5ire vulnerable to Remote Code Execution (RCE) via mermaid",
    "source": "GitHub_M",
    "references": "https://github.com/nanbingxyz/5ire/security/advisories/GHSA-5hpf-p8fw-j349\nhttps://github.com/nanbingxyz/5ire/blob/c40d05a2b546094789fc727daa5383bb15034442/src/hooks/useMarkdown.ts#L156\nhttps://github.com/nanbingxyz/5ire/releases/tag/v0.15.2",
    "id": "CVE-2025-68669",
    "bulletinFamily": "",
    "cwe": [
        "CWE-79"
    ],
    "cvelist": null,
    "sourceData": "nanbingxyz 5ire <= 0.15.2",
    "sourceHref": "",
    "cvss": {
        "score": 9.7,
        "severity": "CRITICAL",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "5ire",
    "version": "<= 0.15.2",
    "vendor": "nanbingxyz",
    "ai_description": "Remote Code Execution (RCE) vulnerability via mermaid due to loose security configuration",
    "ai_severity": "Critical",
    "ai_vendor": "nanbingxyz",
    "ai_product": "5ire",
    "ai_version": "0.15.2 and prior",
    "ai_score": 9.7
}

5ire vulnerable to Remote Code Execution (RCE) via mermaid_CVE-2025-68669