CVE-2026-22792
- Source
- https://cve.org/CVERecord?id=CVE-2026-22792
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-22792.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2026-22792
- Aliases
-
- GHSA-p5fm-wm8g-rffx
- Published
- 2026-01-21T20:54:18.108Z
- Modified
- 2026-01-30T22:53:30.711700Z
- Severity
-
- 9.6 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H CVSS Calculator
- Summary
- 5ire vulnerable to Remote Code Execution (RCE)
- Details
-
5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits untrusted HTML (including on* event attributes) to execute in the renderer context. An attacker can inject an
<img onerror=...>payload to run arbitrary JavaScript in the renderer, which can call exposed bridge APIs such aswindow.bridge.mcpServersManager.createServer. This enables unauthorized creation of MCP servers and lead to remote command execution. Version 0.15.3 fixes the issue. - Database specific
{ "cwe_ids": [ "CWE-116" ], "cna_assigner": "GitHub_M", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/22xxx/CVE-2026-22792.json" }- References
Affected packages
Git / github.com/nanbingxyz/5ire
Affected ranges
- Type
- GIT
- Repo
- https://github.com/nanbingxyz/5ire
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed