HarborGuardharborguardDatabase
Back to search
CRITICALCVE-2026-50551Published Modified CNA GitHub_M

CVE-2026-50551: SiYuan: Stored XSS to RCE via Unsanitized Attribute View Asset Cell Content

SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan contains a stored cross-site scripting (XSS) vulnerability in the Attribute View (database) asset cell renderer that escalates to remote code execution (RCE) in the Electron desktop client. This vulnerability is fixed in 3.7.0.

Metrics

CVSS v3.1
9.9
Severity
CRITICAL
Fixed in
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

Stored cross-site scripting (XSS) escalating to remote code execution (RCE) affects SiYuan, the open-source personal knowledge management system, in versions prior to 3.7.0. The vulnerability is reachable over the network by any authenticated low-privilege user, with no victim interaction required, because the Attribute View database asset cell renderer fails to sanitize user-supplied content before rendering it. Successful exploitation gives an attacker full code execution inside the Electron desktop client, along with complete read, write, and availability impact on affected resources. HarborGuard tracks this advisory and will make a patched-image rebuild available the moment an upstream fix is confirmed published.

HarborGuard Coverage

Detection

Detection capability for CVE-2026-50551 is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against all customer images in connected registries and CI/CD pipelines, including custom-built images that bundle SiYuan. No manual scan trigger is needed for coverage to apply.

Available
Triage

HarborGuard scores this CVE at 9.9 CRITICAL (CVSS v3.1) and surfaces it accordingly in each customer environment, weighted against that environment's active compliance policy. Triage routing directs the finding to the team inbox configured for the affected workload, so the right engineers see it without manual assignment.

Available
Patch

Because no fix version has been published upstream yet, HarborGuard re-evaluates this advisory on every ingest cycle and will make a patched-image rebuild available automatically the moment a confirmed fix release appears. For customers with auto-remediation enabled, a rebuild, regression test run, and PR against affected workloads will be initiated without requiring manual intervention.

Pending upstream

Exploit Conditions

  • Network reachabilityRequired

    The vulnerable endpoint is exposed over the network, so an attacker must be able to reach the SiYuan service across a network connection.

  • AuthenticationRequired

    Any low-privilege authenticated account is sufficient to submit malicious asset cell content; no administrative access is needed.

  • Victim interactionNot required

    No victim action is required; the stored XSS payload executes automatically when the Attribute View renders the malicious cell content.

  • Attack complexityDetail

    Exploitation is straightforward and condition-free, with no race conditions or special memory layout prerequisites required.

Blast Radius

  • Attacker executes arbitrary code inside the Electron desktop client of any user who loads the poisoned Attribute View, achieving full process-level control on that machine.
  • Attacker reads all data accessible to the desktop client, including stored notes, attachments, API tokens, and session credentials.
  • Attacker modifies or deletes any persisted content in the knowledge base, including notes, database entries, and linked assets.
  • Attacker disrupts availability of the desktop client and any locally accessible services, crashing or locking out the affected user.

How HarborGuard Handles This

Available on HarborGuard: this CVE is flagged at CRITICAL severity and surfaces immediately in the findings queue for any image that includes SiYuan prior to version 3.7.0. Because no upstream fix has been published yet, HarborGuard monitors the advisory on each ingest cycle and will trigger an automated patched-image rebuild the moment a confirmed fix version appears. In the interim, customers can apply compensating controls through HarborGuard's policy engine: network-policy isolation to restrict inbound access to SiYuan instances, egress filtering to limit what the Electron process can reach, and feature-flag gating to disable the Attribute View component where the application supports it. For customers with auto-remediation enabled, the transition from monitoring to active remediation (rebuild, regression run, and PR against affected workloads) happens automatically on the same ingest cycle that confirms the fix, with no manual handoff required.

See how HarborGuard automates this
Affected packages
  • siyuan-note / siyuan
    < 3.7.0
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References