CVE-2026-54069: Authentication Bypass in SiYuan Note via Origin Header Spoofing
Vulnerability ID: CVE-2026-54069
CVSS Score: 9.1
Published: 2026-07-10
CVE-2026-54069 is a critical authentication bypass vulnerability in the SiYuan Note personal knowledge management system. The flaw is located in the HTTP server's middleware handling API authorization, which unconditionally trusts requests carrying a 'chrome-extension://' scheme in the Origin HTTP header, granting administrative access without validating API tokens.
TL;DR
A flaw in SiYuan Note's authorization middleware permits remote and local attackers to bypass authentication entirely by presenting a crafted Origin header starting with 'chrome-extension://'.
⚠️ Exploit Status: POC
Technical Details
- CWE ID: CWE-346
- Attack Vector: Network
- CVSS Score: 9.1 (Critical)
- EPSS Score: 0.00607
- Exploit Status: poc
- KEV Status: Not Listed
Affected Systems
- SiYuan Note Kernel
-
SiYuan Note: < 3.7.0 (Fixed in:
3.7.0)
Mitigation Strategies
- Upgrade to version 3.7.0 or later
- Ensure application binds strictly to localhost (127.0.0.1)
- Restrict browser extensions in environments where desktop client runs
Remediation Steps:
- Verify the current running version of the SiYuan Note kernel.
- Download and install version 3.7.0 or newer from the official GitHub release page.
- Update internal configuration files to bind services exclusively to loopback network interfaces.
References
Read the full report for CVE-2026-54069 on our website for more details including interactive diagrams and full exploit analysis.
Top comments (0)