{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32859", "assignerOrgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "state": "PUBLISHED", "assignerShortName": "VulnCheck", "dateReserved": "2026-03-16T18:11:41.760Z", "datePublished": "2026-03-27T13:41:22.077Z", "dateUpdated": "2026-03-27T19:36:48.293Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "83251b91-4cc7-4094-a5c7-464a1b83ea10", "shortName": "VulnCheck", "dateUpdated": "2026-03-27T16:25:56.724Z"}, "title": "ByteDance DeerFlow Stored XSS via Inline Artifact Rendering", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-79", "description": "CWE-79 Improper neutralization of input during web page generation ('cross-site scripting')", "type": "CWE"}]}], "affected": [{"vendor": "Bytedance Inc.", "product": "DeerFlow", "repo": "https://github.com/bytedance/deer-flow", "versions": [{"status": "affected", "version": "0", "lessThan": "5dbb3623b2f0e490c8bb3cd81b1e3b1b12eae1a6", "versionType": "git"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "ByteDance Deer-Flow versions prior to commit 5dbb362\u00a0contain a stored cross-site scripting vulnerability in the artifacts API that allows attackers to execute arbitrary scripts by uploading malicious HTML or script content as artifacts. Attackers can store malicious content that executes in the browser context when users view artifacts, leading to session compromise, credential theft, and arbitrary script execution.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "ByteDance Deer-Flow versions prior to commit 5dbb362&nbsp;contain a stored cross-site scripting vulnerability in the artifacts API that allows attackers to execute arbitrary scripts by uploading malicious HTML or script content as artifacts. Attackers can store malicious content that executes in the browser context when users view artifacts, leading to session compromise, credential theft, and arbitrary script execution.<br>"}]}], "references": [{"url": "https://github.com/bytedance/deer-flow/pull/1389", "tags": ["issue-tracking"]}, {"url": "https://github.com/bytedance/deer-flow/commit/5dbb3623b2f0e490c8bb3cd81b1e3b1b12eae1a6", "tags": ["patch"]}, {"url": "https://www.vulncheck.com/advisories/bytedance-deerflow-stored-xss-via-inline-artifact-rendering", "tags": ["third-party-advisory"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "PASSIVE", "vulnConfidentialityImpact": "NONE", "subConfidentialityImpact": "LOW", "vulnIntegrityImpact": "NONE", "subIntegrityImpact": "LOW", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "MEDIUM", "baseScore": 5.1, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N"}}, {"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE", "baseSeverity": "MEDIUM", "baseScore": 5.4, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"}}], "credits": [{"lang": "en", "value": "Chia Min Jun Lennon", "type": "finder"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 1.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T19:36:38.427787Z", "id": "CVE-2026-32859", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T19:36:48.293Z"}}]}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "ByteDance Deer-Flow versions prior to commit 5dbb362\u00a0contain a stored cross-site scripting vulnerability in the artifacts API that allows attackers to execute arbitrary scripts by uploading malicious HTML or script content as artifacts. Attackers can store malicious content that executes in the browser context when users view artifacts, leading to session compromise, credential theft, and arbitrary script execution."}], "id": "CVE-2026-32859", "lastModified": "2026-03-27T17:16:29.400", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "disclosure@vulncheck.com", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 5.1, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "LOW", "userInteraction": "PASSIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "disclosure@vulncheck.com", "type": "Secondary"}]}, "published": "2026-03-27T14:16:08.703", "references": [{"source": "disclosure@vulncheck.com", "url": "https://github.com/bytedance/deer-flow/commit/5dbb3623b2f0e490c8bb3cd81b1e3b1b12eae1a6"}, {"source": "disclosure@vulncheck.com", "url": "https://github.com/bytedance/deer-flow/pull/1389"}, {"source": "disclosure@vulncheck.com", "url": "https://www.vulncheck.com/advisories/bytedance-deerflow-stored-xss-via-inline-artifact-rendering"}], "sourceIdentifier": "disclosure@vulncheck.com", "vulnStatus": "Received", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "disclosure@vulncheck.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-03-27T15:58:56.449608+00:00", "value": {"mitigation_remediation": ["Update the Deer\u2011Flow installation to commit 5dbb362 or later, which patches the artifact rendering flaw", "If updating immediately is not feasible, disable the artifact upload functionality or restrict it to trusted users", "Apply input validation or content filtering to strip or escape script tags from uploaded artifacts", "Deploy a Web Application Firewall or similar filtering layer to block suspicious HTML submissions", "Monitor logs for anomalous artifact uploads or rendered content that may indicate exploitation attempts"], "summary": {"action": "Patch Now", "impact": "Stored XSS that can lead to arbitrary script execution and session hijacking"}, "threat_synthesis": {"affected_systems": "Bytedance Inc. Deer\u2011Flow instances running any version prior to the commit identified as 5dbb362 are affected. No further version granularity is supplied, so all releases before that patch are considered vulnerable.", "description_and_impact": "This vulnerability is a stored cross\u2011site scripting flaw that resides in the artifacts API of ByteDance Deer\u2011Flow. Attackers can upload malicious HTML or script content as artifacts, which is later rendered in the browser when users view those artifacts. Execution of the injected code can compromise user sessions, steal credentials, and allow arbitrary JavaScript execution in the victim\u2019s browser context.", "risk_and_exploitability": "The CVSS base score of 5.1 indicates a moderate severity. No EPSS score is available and the vulnerability is not listed in CISA\u2019s KEV catalog. The likely attack vector is through the artifact upload API; a threat actor can submit malicious content to an artifact that is later rendered to end users. Given the stored nature of the flaw, exploitation is possible if the upload endpoint is reachable and no strict input validation is enforced."}}}}, "created": "2026-03-27T20:28:53.749621+00:00", "updated": "2026-03-27T20:28:53.749657+00:00", "vendors": []}