{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33311", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-03-18T21:23:36.676Z", "datePublished": "2026-03-24T13:23:43.289Z", "dateUpdated": "2026-03-26T13:06:31.409Z"}, "containers": {"cna": {"title": "@dicebear/core and @dicebear/initials Vulnerable to SVG Injection via Unsanitized Options", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/dicebear/dicebear/security/advisories/GHSA-mr9r-mww3-v6gv", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/dicebear/dicebear/security/advisories/GHSA-mr9r-mww3-v6gv"}], "affected": [{"vendor": "dicebear", "product": "dicebear", "versions": [{"version": ">= 5.0.0, < 5.4.4", "status": "affected"}, {"version": ">= 6.0.0, < 6.1.4", "status": "affected"}, {"version": ">= 7.0.0, < 7.1.4", "status": "affected"}, {"version": ">= 8.0.0, < 8.0.3", "status": "affected"}, {"version": ">= 9.0.0, < 9.4.1", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-24T13:23:43.289Z"}, "descriptions": [{"lang": "en", "value": "DiceBear is an avatar library for designers and developers. Starting in version 5.0.0 and prior to versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, SVG attribute values derived from user-supplied options (`backgroundColor`, `fontFamily`, `textColor`) were not XML-escaped before interpolation into SVG output. This could allow Cross-Site Scripting (XSS) when applications pass untrusted input to `createAvatar()` and serve the resulting SVG inline or with `Content-Type: image/svg+xml`. Starting in versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, all affected SVG attribute values are properly escaped using XML entity encoding. Users should upgrade to the listed patched versions. Some mitigating factors limit vulnerability. Applications that validate input against the library's JSON Schema before passing it to `createAvatar()` are not affected. The DiceBear CLI validates input via AJV and was not vulnerable. Exploitation requires that an application passes untrusted, unvalidated external input directly as option values."}], "source": {"advisory": "GHSA-mr9r-mww3-v6gv", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-26T13:06:10.611539Z", "id": "CVE-2026-33311", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-26T13:06:31.409Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33311", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-26T13:06:10.611539Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-26T13:06:27.509Z"}}], "cna": {"title": "@dicebear/core and @dicebear/initials Vulnerable to SVG Injection via Unsanitized Options", "source": {"advisory": "GHSA-mr9r-mww3-v6gv", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 4.7, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "HIGH", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "dicebear", "product": "dicebear", "versions": [{"status": "affected", "version": ">= 5.0.0, < 5.4.4"}, {"status": "affected", "version": ">= 6.0.0, < 6.1.4"}, {"status": "affected", "version": ">= 7.0.0, < 7.1.4"}, {"status": "affected", "version": ">= 8.0.0, < 8.0.3"}, {"status": "affected", "version": ">= 9.0.0, < 9.4.1"}]}], "references": [{"url": "https://github.com/dicebear/dicebear/security/advisories/GHSA-mr9r-mww3-v6gv", "name": "https://github.com/dicebear/dicebear/security/advisories/GHSA-mr9r-mww3-v6gv", "tags": ["x_refsource_CONFIRM"]}], "descriptions": [{"lang": "en", "value": "DiceBear is an avatar library for designers and developers. Starting in version 5.0.0 and prior to versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, SVG attribute values derived from user-supplied options (`backgroundColor`, `fontFamily`, `textColor`) were not XML-escaped before interpolation into SVG output. This could allow Cross-Site Scripting (XSS) when applications pass untrusted input to `createAvatar()` and serve the resulting SVG inline or with `Content-Type: image/svg+xml`. Starting in versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, all affected SVG attribute values are properly escaped using XML entity encoding. Users should upgrade to the listed patched versions. Some mitigating factors limit vulnerability. Applications that validate input against the library's JSON Schema before passing it to `createAvatar()` are not affected. The DiceBear CLI validates input via AJV and was not vulnerable. Exploitation requires that an application passes untrusted, unvalidated external input directly as option values."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-24T13:23:43.289Z"}}}, "cveMetadata": {"cveId": "CVE-2026-33311", "state": "PUBLISHED", "dateUpdated": "2026-03-26T13:06:31.409Z", "dateReserved": "2026-03-18T21:23:36.676Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-24T13:23:43.289Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:dicebear:dicebear:*:*:*:*:*:*:*:*", "matchCriteriaId": "AB09AE0B-2C5F-42EE-B503-E6DB31F13097", "versionEndExcluding": "5.4.4", "versionStartIncluding": "5.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:dicebear:dicebear:*:*:*:*:*:*:*:*", "matchCriteriaId": "91AF6F19-54B2-4B03-93BE-8CEE3924FCC6", "versionEndExcluding": "6.1.4", "versionStartIncluding": "6.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:dicebear:dicebear:*:*:*:*:*:*:*:*", "matchCriteriaId": "5CD34B76-4E52-474D-98B6-4BEE30C058FA", "versionEndExcluding": "7.1.4", "versionStartIncluding": "7.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:dicebear:dicebear:*:*:*:*:*:*:*:*", "matchCriteriaId": "857BBBB9-784C-4EDB-BF7B-F07E277D7BE6", "versionEndExcluding": "8.0.3", "versionStartIncluding": "8.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:dicebear:dicebear:*:*:*:*:*:*:*:*", "matchCriteriaId": "E8FC8182-9B77-43A9-9178-E8ADF1409AA8", "versionEndExcluding": "9.4.1", "versionStartIncluding": "9.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "DiceBear is an avatar library for designers and developers. Starting in version 5.0.0 and prior to versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, SVG attribute values derived from user-supplied options (`backgroundColor`, `fontFamily`, `textColor`) were not XML-escaped before interpolation into SVG output. This could allow Cross-Site Scripting (XSS) when applications pass untrusted input to `createAvatar()` and serve the resulting SVG inline or with `Content-Type: image/svg+xml`. Starting in versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, all affected SVG attribute values are properly escaped using XML entity encoding. Users should upgrade to the listed patched versions. Some mitigating factors limit vulnerability. Applications that validate input against the library's JSON Schema before passing it to `createAvatar()` are not affected. The DiceBear CLI validates input via AJV and was not vulnerable. Exploitation requires that an application passes untrusted, unvalidated external input directly as option values."}], "id": "CVE-2026-33311", "lastModified": "2026-03-24T19:19:30.667", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.7, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 1.6, "impactScore": 2.7, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-24T14:16:30.290", "references": [{"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/dicebear/dicebear/security/advisories/GHSA-mr9r-mww3-v6gv"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[5.0.0,5.4.4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[6.0.0,6.1.4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[7.0.0,7.1.4)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[8.0.0,8.0.3)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[9.0.0,9.4.1)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "dicebear", "source": "cna", "vendor": "dicebear"}, "product": "dicebear", "vendor": "dicebear"}], "analysis": {"en": {"generated_at": "2026-03-24T20:28:31.050272+00:00", "value": {"mitigation_remediation": ["Upgrade @dicebear/core and @dicebear/initials to at least version 5.4.4, 6.1.4, 7.1.4, 8.0.3, or 9.4.1, or any newer patched release.", "Validate all values passed to createAvatar against the DiceBear JSON schema or ensure XML escaping before use.", "If an immediate upgrade is not possible, restrict untrusted external data from being forwarded to createAvatar to prevent XSS."], "summary": {"action": "Patch", "impact": "Cross-site scripting via unsanitized SVG attributes"}, "threat_synthesis": {"affected_systems": "The vulnerability impacts the dicebear products @dicebear/core and @dicebear/initials. Any release from version 5.0.0 through the predecessor of 5.4.4, from 6.0.0 through the predecessor of 6.1.4, from 7.0.0 through 7.1.3, from 8.0.0 through 8.0.2, and from 9.0.0 through 9.4.0 is affected. Upgraded releases 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1 contain an XML\u2011escaping fix and are immune to the flaw.", "description_and_impact": "DiceBear, an avatar generation library, handles several SVG attribute values such as backgroundColor, fontFamily, and textColor by interpolating user\u2011supplied values directly into the SVG markup without XML escaping. This omission permits attackers to inject crafted strings that resolve into executable JavaScript when the resulting SVG is served inline or with the proper Content\u2011Type header. The flaw is a classic cross\u2011site scripting vulnerability (CWE\u201179) that can compromise data confidentiality, integrity, and availability of affected web applications.", "risk_and_exploitability": "The CVSS score of 4.7 indicates a moderate severity level. Because exploitation requires that an application pass untrusted input directly to createAvatar and expose the resulting SVG to clients, the attack is limited to scenarios where input validation is absent or inadequate. The vulnerability is not listed in the CISA KEV catalog and the EPSS score is unavailable, implying no widespread exploitation yet, but the potential impact warrants prompt remediation."}}}}, "created": "2026-03-25T11:47:36.201720+00:00", "updated": "2026-03-25T20:50:14.874941+00:00", "vendors": ["dicebear", "dicebear$PRODUCT$dicebear"]}