CVE-2026-23733 is a vulnerability classified under CWE-94 (Improper Control of Generation of Code), affecting the LobeChat open source chat application platform. The flaw exists in versions prior to 2.0.0-next.180 and stems from a stored Cross-Site Scripting (XSS) vulnerability within the Mermaid artifact renderer component. This renderer improperly sanitizes user-supplied input, allowing attackers to inject and store malicious JavaScript code. When a victim views the affected artifact, the malicious script executes within the application's context. Critically, LobeChat exposes an electronAPI IPC bridge that facilitates inter-process communication between the renderer and the underlying operating system. Attackers can leverage this bridge to escalate the XSS into Remote Code Execution (RCE), enabling arbitrary system command execution on the victim's machine. The CVSS 3.1 base score is 6.4 (medium), reflecting that exploitation requires local access (AV:L), high attack complexity (AC:H), privileges (PR:H), and user interaction (UI:R). The vulnerability impacts confidentiality (high), integrity (low), and availability (low) due to the potential for system command execution. No public exploits are known, but the risk is significant for environments where users run vulnerable LobeChat versions with elevated privileges. The issue is resolved in version 2.0.0-next.180, which includes proper input sanitization and hardened IPC controls.

For European organizations, this vulnerability poses a risk primarily to environments where LobeChat is deployed and used by privileged users. Successful exploitation could lead to unauthorized system command execution, potentially compromising sensitive data, disrupting services, or enabling lateral movement within networks. Confidentiality is most at risk due to arbitrary code execution capabilities. The requirement for local access and user interaction limits widespread remote exploitation but does not eliminate insider threat or targeted attack scenarios. Organizations relying on LobeChat for internal communications, especially in sectors like technology, finance, or government, could face operational disruptions or data breaches if the vulnerability is exploited. The medium severity rating suggests moderate urgency, but the ability to escalate from XSS to RCE elevates the potential impact. Given the open source nature of LobeChat, organizations using customized or self-hosted deployments should be particularly vigilant.

European organizations should immediately verify their LobeChat versions and upgrade to 2.0.0-next.180 or later to apply the official patch. Beyond patching, organizations should implement strict privilege management to limit the number of users with high-level access to LobeChat instances. Employ application whitelisting and endpoint detection and response (EDR) solutions to monitor and block suspicious system command executions originating from LobeChat processes. Network segmentation can reduce the impact of a compromised host. Disable or restrict the electronAPI IPC bridge if possible, or apply additional sandboxing to limit its capabilities. Conduct user training to raise awareness about the risks of interacting with untrusted content within chat applications. Regularly audit and sanitize user-generated content to prevent injection of malicious scripts. Finally, monitor logs for unusual activity related to LobeChat usage and IPC communications.