{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-22792", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-01-09T18:27:19.389Z", "datePublished": "2026-01-21T20:54:18.108Z", "dateUpdated": "2026-01-21T21:26:47.676Z"}, "containers": {"cna": {"title": "5ire vulnerable to Remote Code Execution (RCE)", "problemTypes": [{"descriptions": [{"cweId": "CWE-116", "lang": "en", "description": "CWE-116: Improper Encoding or Escaping of Output", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.7, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}], "references": [{"name": "https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx"}, {"name": "https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3", "tags": ["x_refsource_MISC"], "url": "https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3"}], "affected": [{"vendor": "nanbingxyz", "product": "5ire", "versions": [{"version": "< 0.15.3", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-21T20:54:18.108Z"}, "descriptions": [{"lang": "en", "value": "5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits untrusted HTML (including on* event attributes) to execute in the renderer context. An attacker can inject an `<img onerror=...>` payload to run arbitrary JavaScript in the renderer, which can call exposed bridge APIs such as `window.bridge.mcpServersManager.createServer`. This enables unauthorized creation of MCP servers and lead to remote command execution. Version 0.15.3 fixes the issue."}], "source": {"advisory": "GHSA-p5fm-wm8g-rffx", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-21T21:26:39.337123Z", "id": "CVE-2026-22792", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-21T21:26:47.676Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-22792", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-01-21T21:26:39.337123Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-21T21:26:43.295Z"}}], "cna": {"title": "5ire vulnerable to Remote Code Execution (RCE)", "source": {"advisory": "GHSA-p5fm-wm8g-rffx", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.7, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "nanbingxyz", "product": "5ire", "versions": [{"status": "affected", "version": "< 0.15.3"}]}], "references": [{"url": "https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx", "name": "https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3", "name": "https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits untrusted HTML (including on* event attributes) to execute in the renderer context. An attacker can inject an `<img onerror=...>` payload to run arbitrary JavaScript in the renderer, which can call exposed bridge APIs such as `window.bridge.mcpServersManager.createServer`. This enables unauthorized creation of MCP servers and lead to remote command execution. Version 0.15.3 fixes the issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-116", "description": "CWE-116: Improper Encoding or Escaping of Output"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-21T20:54:18.108Z"}}}, "cveMetadata": {"cveId": "CVE-2026-22792", "state": "PUBLISHED", "dateUpdated": "2026-01-21T21:26:47.676Z", "dateReserved": "2026-01-09T18:27:19.389Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-01-21T20:54:18.108Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:5ire:5ire:*:*:*:*:*:*:*:*", "matchCriteriaId": "E337B209-844D-4396-B279-063A15A1C0DC", "versionEndExcluding": "0.15.3", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits untrusted HTML (including on* event attributes) to execute in the renderer context. An attacker can inject an `<img onerror=...>` payload to run arbitrary JavaScript in the renderer, which can call exposed bridge APIs such as `window.bridge.mcpServersManager.createServer`. This enables unauthorized creation of MCP servers and lead to remote command execution. Version 0.15.3 fixes the issue."}], "id": "CVE-2026-22792", "lastModified": "2026-01-29T19:46:50.240", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.6, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 6.0, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-01-21T21:16:09.957", "references": [{"source": "security-advisories@github.com", "tags": ["Release Notes"], "url": "https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-116"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T15:32:16.602311+00:00", "value": {"mitigation_remediation": ["Upgrade 5ire to version 0.15.3 or later to apply the vendor-provided fix.", "Disable or limit the use of the `window.bridge.mcpServersManager.createServer` API by configuring the application or removing the feature if it is not required.", "Monitor the application logs for any unauthorized creation of MCP servers and review access controls to mitigate potential misuse."], "summary": {"action": "Apply Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The vulnerability affects the 5ire application developed by nanbingxyz. All releases prior to version 0.15.3 are impacted. Version 0.15.3 and later contain the fix.", "description_and_impact": "An unsafe HTML rendering path in 5ire allows untrusted HTML\u2014including event handler attributes\u2014to be executed in the renderer process. By injecting a payload such as `<img onerror=...>`, an attacker can run arbitrary JavaScript. This JavaScript can call exposed bridge APIs like `window.bridge.mcpServersManager.createServer`, enabling the attacker to create new MCP servers and ultimately execute remote commands on the host system.", "risk_and_exploitability": "The vulnerability has a CVSS score of 9.7, indicating critical severity. The EPSS score is less than 1%, suggesting a low probability of exploitation as of this analysis, and the vulnerability is not listed in CISA\u2019s KEV catalog. Based on the description, the attack requires delivery of malicious HTML content to the renderer, which could be achieved by an attacker who can influence the content viewed by the application. The bridge API exposure further elevates the impact to full remote code execution on the host."}}}}, "created": "2026-01-22T10:08:20.632589+00:00", "updated": "2026-04-18T15:45:04.265315+00:00", "vendors": ["nanbingxyz", "nanbingxyz$PRODUCT$5ire"]}