HarborGuardharborguardDatabase
Back to search
CRITICALCVE-2026-56397Published Modified CNA VulnCheck

CVE-2026-56397: SiYuan - Remote Code Execution via Malicious Bazaar Package Metadata and README

SiYuan before v3.6.1 fails to sanitize package metadata and README content in the Bazaar marketplace, allowing malicious package authors to inject arbitrary HTML and JavaScript. Attackers can achieve remote code execution on any user browsing the Bazaar by embedding XSS payloads in package displayName, description, or README fields, exploiting Electron's nodeIntegration setting to execute OS commands.

Metrics

CVSS v4.0
9.4
Severity
CRITICAL
Fixed in
3.6.1
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

This is a cross-site scripting (XSS) to remote code execution vulnerability in SiYuan, a note-taking application built on Electron. An unauthenticated attacker who can publish a malicious package to the Bazaar marketplace can inject arbitrary HTML and JavaScript into package metadata fields (displayName, description, README), which executes as OS-level commands when any user browses the marketplace, because Electron's nodeIntegration setting grants renderer pages direct access to Node.js APIs. Successful exploitation gives the attacker full remote code execution on the victim's machine. A patched-image rebuild at version 3.6.1 is available on HarborGuard for environments running an affected version.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment: the CVE is ingested from upstream advisory feeds within minutes of publication and matched against customer images, including custom-built images that bundle SiYuan, throughout every registry and CI/CD pipeline connected to the platform.

Available
Triage

HarborGuard scores this finding at CVSS v4.0 9.4 (Critical) and weights it against each environment's compliance policy to determine urgency and routing, surfacing it to the appropriate team inbox within the customer org based on image ownership and policy thresholds.

Available
Patch

A patched-image rebuild pinned to SiYuan 3.6.1 becomes available on HarborGuard for any environment where an affected image is detected. For customers who opt into auto-remediation, HarborGuard triggers a rebuild, runs a regression test suite against the new image, and opens a pull request against affected workloads automatically.

Available

Exploit Conditions

  • Network reachabilityRequired

    The attacker must be able to publish a package to the Bazaar marketplace, which is reachable over the network, and the victim must browse the marketplace from a network-connected SiYuan instance.

  • AuthenticationNot required

    No authentication or account privileges are required on the victim's side; anyone who browses the Bazaar marketplace is exposed.

  • Victim interactionRequired

    A victim must open or browse the Bazaar marketplace page within SiYuan, making this a social-engineering vector where a malicious package must attract or be surfaced to the victim.

  • Attack complexityDetail

    Exploitation is reliable and condition-free once the malicious package is published; no race conditions, memory layout knowledge, or special environmental factors are required.

Blast Radius

  • The attacker executes arbitrary operating system commands on the victim's machine with the privileges of the SiYuan process, gaining a full foothold on the host.
  • All files accessible to the running user (notes, credentials, SSH keys, browser session data) can be read and exfiltrated.
  • The attacker can write or modify files on the host, including configuration files and application binaries reachable by the current user.
  • The SiYuan process and any dependent services can be crashed or hijacked, disrupting availability for the affected user.

How HarborGuard Handles This

Available on HarborGuard: detection for CVE-2026-56397 is active across connected registries and pipelines, covering any image that packages SiYuan below version 3.6.1. Where a customer's compliance policy permits auto-remediation, HarborGuard initiates a rebuild against the fixed upstream release (3.6.1), runs regression tests on the resulting image, and opens a pull request against affected workloads. For Critical-severity issues like this one, the median time from CVE publication to a merged patch PR is around 90 minutes for environments with auto-remediation enabled. For environments where auto-remediation is not enabled, the finding is routed to the appropriate team inbox for manual review and remediation. Because exploitation requires only victim interaction with the Bazaar UI (no authentication barrier), teams that cannot immediately apply the patch should consider disabling or network-isolating Bazaar marketplace access at the host or container network-policy level until the upgraded image is deployed.

See how HarborGuard automates this

Fix available

3.6.1
Affected packages
  • SiYuan / SiYuan
    < 3.6.1 (from 0)
    Fixed in 3.6.1
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
References