Vulnerability Description
AIRI is a self-hosted, artificial intelligence based Grok Companion. In v0.7.2-beta.2 in the `packages/stage-ui/src/components/MarkdownRenderer.vue` path, the Markdown content is processed using the useMarkdown composable, and the processed HTML is rendered directly into the DOM using v-html. An attacker creates a card file containing malicious HTML/JavaScript, then simply processes it using the highlightTagToHtml function (which simply replaces template tags without HTML escaping), and then directly renders it using v-html, leading to cross-site scripting (XSS). The project also exposes the Tauri API, which can be called from the frontend. The MCP plugin exposes a command execution interface function in `crates/tauri-plugin-mcp/src/lib.rs`. This allows arbitrary command execution. `connect_server` directly passes the user-supplied `command` and `args` parameters to `Command::new(command).args(args)` without any input validation or whitelisting. Thus, the previous XSS exploit could achieve command execution through this interface. v0.7.2-beta.3 fixes the issue.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://github.com/moeru-ai/airi/commit/3315634903c9102a19e8f0476970df01801c8ca4
- https://github.com/moeru-ai/airi/security/advisories/GHSA-9832-f8jx-hw6f
- https://github.com/moeru-ai/airi/security/advisories/GHSA-9832-f8jx-hw6f
FAQ
What is CVE-2025-59053?
CVE-2025-59053 is a vulnerability with a CVSS score of 9.6 (CRITICAL). AIRI is a self-hosted, artificial intelligence based Grok Companion. In v0.7.2-beta.2 in the `packages/stage-ui/src/components/MarkdownRenderer.vue` path, the Markdown content is processed using the u...
How severe is CVE-2025-59053?
CVE-2025-59053 has been rated CRITICAL with a CVSS base score of 9.6/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-59053?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.