How is CVE-2026-47171 exploited?

Network reachability (required): The attacker submits the malicious reminder over the network via Discord's API, so the bot's network-exposed command interface must be reachable. Authentication (not-required): Any normal Discord user account is sufficient; no elevated privileges or special role membership are needed to create a reminder. Victim interaction (not-required): No action from a moderator or other user is required; the bot delivers the mass-mention autonomously when the reminder timer expires. Attack complexity (info): Exploitation is reliable and condition-free once the reminder is saved; the attacker only needs to wait for the scheduled trigger time.

What is the impact of CVE-2026-47171?

Modifies channel notification state by forcibly pinging all server members or all online members, bypassing any channel slowmode or mention restrictions set by moderators. Allows a low-privilege user to weaponize the bot's elevated mention-everyone permission, escalating their effective reach beyond what Discord's own role system would normally permit them. Repeated or timed mass-mention floods can disrupt server communication and degrade the experience for all members, constituting a denial-of-normal-use condition.

Back to search

HIGHCVE-2026-47171Published 2026-06-11Modified 2026-06-11CNA GitHub_M

CVE-2026-47171: Quest Bot: Reminder messages allow stored mass mentions through `@everyone` and `@here`

Quest Bot is an opensource modern Discord Bot built for moderation, utilities and support. Prior to version 1.0.3, a normal user can create a reminder whose message contains @everyone or @here. When the reminder triggers, the bot sends the stored message back into the channel without suppressing mass mentions. If the bot has permission to mention everyone, the reminder can ping the entire server or channel later. This issue has been patched in version 1.0.3.

CVSS v4.0: 8.8
Severity: HIGH
Fixed in: —
Affected Products: 1

HarborGuard Analysis

Synopsis

Stored mass-mention injection in Quest Bot (duck-organization/quest-bot) allows any unprivileged user to embed `@everyone` or `@here` into a reminder message. When the reminder fires, the bot replays the stored message into the channel without sanitizing mass-mention tokens, so the ping reaches the entire server or channel if the bot holds mention-everyone permission. No fix version has been published upstream yet; HarborGuard tracks the advisory and will make a patched-image rebuild available the moment a fix is released.

HarborGuard Coverage

Detection

Detection of CVE-2026-47171 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against customer images, including custom-built images that bundle quest-bot, across all connected registries and CI pipelines.

Available

Triage

HarborGuard is capable of scoring this CVE at CVSS 8.8 (HIGH) and weighting it against each environment's compliance policy to determine urgency; findings are routed to the appropriate team inbox within each customer organization based on configured ownership rules.

Available

Patch

Because no fix version has been published upstream, HarborGuard re-checks the advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment duck-organization publishes a remediated release. Customers with auto-remediation enabled will receive the rebuild, a regression-test run, and a pull request opened against affected workloads without manual intervention.

Pending upstream

Exploit Conditions

Network reachabilityRequired
The attacker submits the malicious reminder over the network via Discord's API, so the bot's network-exposed command interface must be reachable.
AuthenticationNot required
Any normal Discord user account is sufficient; no elevated privileges or special role membership are needed to create a reminder.
Victim interactionNot required
No action from a moderator or other user is required; the bot delivers the mass-mention autonomously when the reminder timer expires.
Attack complexityDetail
Exploitation is reliable and condition-free once the reminder is saved; the attacker only needs to wait for the scheduled trigger time.

Blast Radius

Modifies channel notification state by forcibly pinging all server members or all online members, bypassing any channel slowmode or mention restrictions set by moderators.
Allows a low-privilege user to weaponize the bot's elevated mention-everyone permission, escalating their effective reach beyond what Discord's own role system would normally permit them.
Repeated or timed mass-mention floods can disrupt server communication and degrade the experience for all members, constituting a denial-of-normal-use condition.

How HarborGuard Handles This

Available on HarborGuard: scanning for CVE-2026-47171 is active against any image that bundles quest-bot below version 1.0.3. Because no upstream fix is currently published, HarborGuard monitors the duck-organization/quest-bot advisory on every ingest cycle. As a compensating control while no patch exists, consider applying a network policy that restricts the bot container's outbound Discord API access to read-only webhook endpoints, or use a feature-flag or permission change to revoke the bot's mention-everyone Discord permission until a patched image is available. For customers who opt into auto-remediation, a rebuilt image and pull request will be generated and opened against affected workloads within minutes of a fix version appearing upstream.

See how HarborGuard automates this

Affected packages

duck-organization / quest-bot
< 1.0.3

CVSS Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N

References

Metrics

Get notified