ByteOS Network

NVD Vulnerability Details :

CVE-2026-22792

Analyzed

Source-security-advisories@github.com

Published At-21 Jan, 2026 | 21:16

Updated At-29 Jan, 2026 | 19:46

5ire is a cross-platform desktop artificial intelligence assistant and model context protocol client. Prior to version 0.15.3, an unsafe HTML rendering permits untrusted HTML (including on* event attributes) to execute in the renderer context. An attacker can inject an `<img onerror=...>` payload to run arbitrary JavaScript in the renderer, which can call exposed bridge APIs such as `window.bridge.mcpServersManager.createServer`. This enables unauthorized creation of MCP servers and lead to remote command execution. Version 0.15.3 fixes the issue.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	9.6	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 9.6

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

CPE Matches

5ire>>5ire>>Versions before 0.15.3(exclusive)

cpe:2.3:a:5ire:5ire:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-116	Primary	security-advisories@github.com

CWE ID: CWE-116

Type: Primary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3	security-advisories@github.com	Release Notes
https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx	security-advisories@github.com	Exploit Vendor Advisory

Hyperlink: https://github.com/nanbingxyz/5ire/releases/tag/v0.15.3

Source: security-advisories@github.com

Resource:

Release Notes

Hyperlink: https://github.com/nanbingxyz/5ire/security/advisories/GHSA-p5fm-wm8g-rffx

Source: security-advisories@github.com

Resource:

Exploit

Vendor Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History