CVE Catalog

CVE-2026-43899

Critical
Published: Translated: NVD NIST

Summary

DeepChat prior to version 1.0.4-beta.1 is vulnerable to an arbitrary protocol execution bypass, potentially leading to remote code execution (RCE). The issue arises from improper sanitization of Electron pop-up window handlers, allowing an attacker to intercept a malicious URL.

Risk Assessment

The organization may be exposed to remote code execution, which could lead to data loss, system takeover, or other serious security incidents.

Recommendation

It is recommended to update DeepChat to version 1.0.4-beta.1 to mitigate this vulnerability and conduct a security audit of the application.

Original NVD description (English source)

DeepChat is an open-source artificial intelligence agent platform that unifies models, tools, and agents. Prior to v1.0.4-beta.1, An incomplete mitigation for CVE-2025-55733 leaves DeepChat vulnerable to an arbitrary protocol execution bypass (RCE). While the patch correctly restricted api.openExternal() inside the renderer's preload/index.ts script, it structurally neglected to sanitize native Electron pop-up window handlers. An attacker or a compromised AI endpoint returning a Markdown link can trigger a target="_blank" native window interception in tabPresenter.ts, which forwards the malicious URL directly to shell.openExternal(url) and completely bypasses the isValidExternalUrl security boundary. This vulnerability is fixed in v1.0.4-beta.1.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS