{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23733", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-01-15T15:45:01.957Z", "datePublished": "2026-01-18T22:56:15.888Z", "dateUpdated": "2026-01-20T20:06:51.723Z"}, "containers": {"cna": {"title": "Lobe Chat has Cross-Site Scripting (XSS) issue that may escalate to Remote Code Execution (RCE)", "problemTypes": [{"descriptions": [{"cweId": "CWE-94", "lang": "en", "description": "CWE-94: Improper Control of Generation of Code ('Code Injection')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/lobehub/lobe-chat/security/advisories/GHSA-4gpc-rhpj-9443", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/lobehub/lobe-chat/security/advisories/GHSA-4gpc-rhpj-9443"}], "affected": [{"vendor": "lobehub", "product": "lobe-chat", "versions": [{"version": "< 2.0.0-next.180", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-18T22:56:15.888Z"}, "descriptions": [{"lang": "en", "value": "LobeChat is an open source chat application platform. Prior to version 2.0.0-next.180, a stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within the application context. This XSS can be escalated to Remote Code Execution (RCE) by leveraging the exposed `electronAPI` IPC bridge, allowing attackers to run arbitrary system commands on the victim's machine. Version 2.0.0-next.180 patches the issue."}], "source": {"advisory": "GHSA-4gpc-rhpj-9443", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-01-20T19:37:28.484840Z", "id": "CVE-2026-23733", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-20T20:06:51.723Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-23733", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-01-20T19:37:28.484840Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-01-20T19:37:29.497Z"}}], "cna": {"title": "Lobe Chat has Cross-Site Scripting (XSS) issue that may escalate to Remote Code Execution (RCE)", "source": {"advisory": "GHSA-4gpc-rhpj-9443", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.4, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "LOW", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}}], "affected": [{"vendor": "lobehub", "product": "lobe-chat", "versions": [{"status": "affected", "version": "< 2.0.0-next.180"}]}], "references": [{"url": "https://github.com/lobehub/lobe-chat/security/advisories/GHSA-4gpc-rhpj-9443", "name": "https://github.com/lobehub/lobe-chat/security/advisories/GHSA-4gpc-rhpj-9443", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "LobeChat is an open source chat application platform. Prior to version 2.0.0-next.180, a stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within the application context. This XSS can be escalated to Remote Code Execution (RCE) by leveraging the exposed `electronAPI` IPC bridge, allowing attackers to run arbitrary system commands on the victim's machine. Version 2.0.0-next.180 patches the issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-94", "description": "CWE-94: Improper Control of Generation of Code ('Code Injection')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-01-18T22:56:15.888Z"}}}, "cveMetadata": {"cveId": "CVE-2026-23733", "state": "PUBLISHED", "dateUpdated": "2026-01-20T20:06:51.723Z", "dateReserved": "2026-01-15T15:45:01.957Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-01-18T22:56:15.888Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "LobeChat is an open source chat application platform. Prior to version 2.0.0-next.180, a stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within the application context. This XSS can be escalated to Remote Code Execution (RCE) by leveraging the exposed `electronAPI` IPC bridge, allowing attackers to run arbitrary system commands on the victim's machine. Version 2.0.0-next.180 patches the issue."}, {"lang": "es", "value": "LobeChat es una plataforma de aplicaci\u00f3n de chat de c\u00f3digo abierto. Antes de la versi\u00f3n 2.0.0-next.180, una vulnerabilidad de cross-site scripting (XSS) almacenado en el renderizador de artefactos Mermaid permite a los atacantes ejecutar JavaScript arbitrario dentro del contexto de la aplicaci\u00f3n. Este XSS puede escalarse a ejecuci\u00f3n remota de c\u00f3digo (RCE) aprovechando el puente IPC 'electronAPI' expuesto, permitiendo a los atacantes ejecutar comandos de sistema arbitrarios en la m\u00e1quina de la v\u00edctima. La versi\u00f3n 2.0.0-next.180 corrige el problema."}], "id": "CVE-2026-23733", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "LOW", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:L/A:L", "version": "3.1"}, "exploitabilityScore": 0.6, "impactScore": 5.3, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-01-18T23:15:48.710", "references": [{"source": "security-advisories@github.com", "url": "https://github.com/lobehub/lobe-chat/security/advisories/GHSA-4gpc-rhpj-9443"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-18T05:24:48.217981+00:00", "value": {"mitigation_remediation": ["Upgrade LobeChat to version 2.0.0\u2011next.180 or newer, which removes the vulnerable renderer and disables the exposed IPC bridge used for command execution.", "If an immediate upgrade cannot be performed, isolate the application by running it within a sandboxed or restricted container that blocks access to system-level APIs and the electronAPI IPC bridge.", "Implement strict input validation on all user\u2011supplied artifacts before rendering, ensuring that any embedded scripts are either stripped or sanitized to prevent execution of injected JavaScript."], "summary": {"action": "Immediate Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "The issue affects all versions of the LobeChat application prior to 2.0.0\u2011next.180. Users running the affected builds from any distribution that includes the vulnerable Mermaid renderer are at risk.", "description_and_impact": "LobeChat, an open source chat platform, contains a stored Cross\u2011Site Scripting flaw in its Mermaid artifact renderer. The flaw permits an attacker to inject arbitrary JavaScript into the application. When this XSS is combined with the vulnerability in the exposed electronAPI inter\u2011process communication bridge, an attacker can elevate the injected code to execute arbitrary system commands, thereby achieving remote code execution on the victim\u2019s machine.", "risk_and_exploitability": "The CVSS base score of 6.4 indicates a moderate to high impact, while the EPSS score of less than 1% suggests a low probability of current exploitation. The vulnerability is not yet cataloged in the CISA KEV list, but the combination of client\u2011side XSS with IPC\u2011based command execution grants a powerful attack vector, especially in environments where the Electron API is widely accessible. An attacker would need to convince a user to open a malicious artifact or otherwise inject the payload into the renderer; once done, the IPC bridge can be exploited to run system commands."}}}}, "created": "2026-01-19T09:19:10.273949+00:00", "updated": "2026-04-18T05:30:25.845586+00:00", "vendors": ["lobehub", "lobehub$PRODUCT$lobe_chat"]}