Vulnerability Description
Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. A critical Stored Cross-Site Scripting (XSS) vulnerability exists in versions prior to 0.11.1 in the Mermaid diagram rendering component. The application allows the execution of arbitrary JavaScript via `javascript:`. An attacker can exploit this to inject a malicious Model Context Protocol (MCP) server configuration, leading to Remote Code Execution (RCE) on the victim's machine when the node is clicked. Version 0.11.1 fixes the issue.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Openagentplatform | Dive | < 0.11.1 |
Related Weaknesses (CWE)
References
- https://github.com/OpenAgentPlatform/Dive/security/advisories/GHSA-xv8m-365j-x6hExploitVendor Advisory
- https://github.com/OpenAgentPlatform/Dive/security/advisories/GHSA-xv8m-365j-x6hExploitVendor Advisory
FAQ
What is CVE-2025-66580?
CVE-2025-66580 is a vulnerability with a CVSS score of 9.6 (CRITICAL). Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. A critical Stored Cross-Site Scripting (XSS) vulnerability exists in versions prior to 0.11.1 i...
How severe is CVE-2025-66580?
CVE-2025-66580 has been rated CRITICAL with a CVSS base score of 9.6/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2025-66580?
Check the references section above for vendor advisories and patch information. Affected products include: Openagentplatform Dive.