CVE-2025-68669

CVE-2025-68669 is a remote code execution (RCE) vulnerability affecting 5ire, a cross-platform desktop artificial intelligence assistant and model context protocol client. The issue resides in the useMarkdown.ts file in versions 0.15.2 and prior, where the markdown-it-mermaid plugin is initialized with securityLevel set to 'loose'. This configuration allows the rendering of HTML tags within Mermaid diagram nodes, enabling arbitrary code execution. The vulnerability is classified under CWE-79 (Cross-Site Scripting) with a CVSS v3.1 base score of 9.6 (AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H).

An attacker can exploit this vulnerability remotely without privileges by tricking a user into rendering malicious Markdown content containing a specially crafted Mermaid diagram. User interaction is required, such as opening or processing the Markdown in the 5ire application. Successful exploitation grants the attacker high confidentiality, integrity, and availability impacts with changed scope, potentially leading to full RCE on the victim's desktop system.

The GitHub security advisory (GHSA-5hpf-p8fw-j349) confirms the issue has not been patched as of publication on 2025-12-23. References point to the vulnerable code in useMarkdown.ts at line 156, a potential fix in commit 1fbe40d0bfbfe215370d45b9af856c286d67d3f2, and the v0.15.2 release, but no official patch is available in the affected versions.

As a desktop AI assistant, 5ire's vulnerability carries relevance to AI/ML workflows where users process Markdown from untrusted sources, such as shared model contexts or documentation. No real-world exploitation has been reported at the time of publication.