CVE-2026-44451: CWE-693: Protection Mechanism Failure in prolix-oc Lumiverse
CVE-2026-44451 is a critical protection mechanism failure in the Lumiverse AI chat application prior to version 0. 9. 7. The vulnerability arises from the component override system that transpiles user-supplied TSX code and evaluates it in a sandbox intended to block dangerous globals. However, both the static source validator and runtime sandbox controls can be bypassed, allowing reconstruction of blocked identifiers and escape from the sandbox to access the real window object. This enables execution of malicious code within an authenticated user session when a crafted theme pack is imported and enabled. The vulnerability is fixed in Lumiverse version 0. 9. 7.
AI Analysis
Technical Summary
Lumiverse versions before 0.9.7 contain a vulnerability in the component override system where user-supplied TSX code is transpiled and evaluated using new Function with shadowed dangerous globals. The static validator blocks dangerous identifiers via regex, but this can be bypassed by reconstructing identifiers from string fragments at runtime. Additionally, sandbox escape is possible by leveraging useRef and useEffect hooks to obtain a live DOM node and then accessing the real window object through the node's ownerDocument.defaultView property. Malicious theme packs (.lumitheme or .lumiverse-theme) can exploit this by delivering payloads that execute in the victim's authenticated session once imported and enabled. This vulnerability is addressed in version 0.9.7.
Potential Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of an authenticated user session of Lumiverse, leading to complete compromise of confidentiality and integrity of user data. The vulnerability does not impact availability. The CVSS score is 9.3 (critical), reflecting network attack vector, low attack complexity, no privileges required, user interaction required, scope change, and high impact on confidentiality and integrity.
Mitigation Recommendations
This vulnerability is fixed in Lumiverse version 0.9.7. Users and administrators should upgrade to version 0.9.7 or later to remediate this issue. No official patch links or vendor advisory content are provided, but the fix is confirmed in the version history. Until upgrading, avoid importing or enabling untrusted theme packs to reduce risk.
CVE-2026-44451: CWE-693: Protection Mechanism Failure in prolix-oc Lumiverse
Description
CVE-2026-44451 is a critical protection mechanism failure in the Lumiverse AI chat application prior to version 0. 9. 7. The vulnerability arises from the component override system that transpiles user-supplied TSX code and evaluates it in a sandbox intended to block dangerous globals. However, both the static source validator and runtime sandbox controls can be bypassed, allowing reconstruction of blocked identifiers and escape from the sandbox to access the real window object. This enables execution of malicious code within an authenticated user session when a crafted theme pack is imported and enabled. The vulnerability is fixed in Lumiverse version 0. 9. 7.
CVSS v3.1
Score 9.3critical
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
Lumiverse versions before 0.9.7 contain a vulnerability in the component override system where user-supplied TSX code is transpiled and evaluated using new Function with shadowed dangerous globals. The static validator blocks dangerous identifiers via regex, but this can be bypassed by reconstructing identifiers from string fragments at runtime. Additionally, sandbox escape is possible by leveraging useRef and useEffect hooks to obtain a live DOM node and then accessing the real window object through the node's ownerDocument.defaultView property. Malicious theme packs (.lumitheme or .lumiverse-theme) can exploit this by delivering payloads that execute in the victim's authenticated session once imported and enabled. This vulnerability is addressed in version 0.9.7.
Potential Impact
Successful exploitation allows an attacker to execute arbitrary code in the context of an authenticated user session of Lumiverse, leading to complete compromise of confidentiality and integrity of user data. The vulnerability does not impact availability. The CVSS score is 9.3 (critical), reflecting network attack vector, low attack complexity, no privileges required, user interaction required, scope change, and high impact on confidentiality and integrity.
Mitigation Recommendations
This vulnerability is fixed in Lumiverse version 0.9.7. Users and administrators should upgrade to version 0.9.7 or later to remediate this issue. No official patch links or vendor advisory content are provided, but the fix is confirmed in the version history. Until upgrading, avoid importing or enabling untrusted theme packs to reduce risk.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-05-06T15:49:25.192Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a16041de29bf47b505ea060
Added to database: 5/26/2026, 8:35:41 PM
Last enriched: 5/26/2026, 8:48:45 PM
Last updated: 5/27/2026, 4:51:11 AM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.