CVE-2025-54881

Mermaid is a JavaScript based diagramming and charting tool that uses Markdown-inspired text definitions and a renderer to create and modify complex diagrams. In the default configuration of mermaid 10.9.0-rc.1 to 11.9.0, user supplied input for sequence diagram labels is passed to innerHTML during calculation of element size, causing XSS.

Open

LOW (0.7)

System detected CVE-2025-54881
sbom-documentation
System detected CVE-2025-54881
sbom-documentation
System
sbom-documentation
System
sbom-documentation
System
button
System updated the risk assessment from 0 to 0.32
0.1.0
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
0.1.0
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
button
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
update-gitlab-integration-dokument
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
update-gitlab-integration-dokument
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
sbom-documentation
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
sbom-documentation
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
docu-update
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
contacts
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
add-workflows-components-docus
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
add-workflows-components-docus
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
699-create-how-to-commit-documentation
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
713-Add-link-to-an-overview-of-all-the-Risk-Mitigation-Guides
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
713-Add-link-to-an-overview-of-all-the-Risk-Mitigation-Guides
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
704-Improve-DevGuard-Setup-Guide
System recalculated raw risk assessment
System updated the risk assessment from 0 to 0.32
704-Improve-DevGuard-Setup-Guide
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
704-Improve-DevGuard-Setup-Guide
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
0.1.0
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
713-Add-link-to-an-overview-of-all-the-Risk-Mitigation-Guides
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
sbom-documentation
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
add-workflows-components-docus
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
main
System recalculated raw risk assessment
System updated the risk assessment from 0.32 to 0.65
update-gitlab-integration-dokument
System recalculated raw risk assessment
System fixed CVE-2025-54881
0.1.0
System fixed CVE-2025-54881
sbom-documentation
System fixed CVE-2025-54881
704-Improve-DevGuard-Setup-Guide
System fixed CVE-2025-54881
add-workflows-components-docus
System fixed CVE-2025-54881
713-Add-link-to-an-overview-of-all-the-Risk-Mitigation-Guides
System fixed CVE-2025-54881
update-gitlab-integration-dokument
System fixed CVE-2025-54881
main
System detected CVE-2025-54881 with a risk of 0.32
0.1.0
System updated the risk assessment from 0.32 to 0.65
main
System recalculated raw risk assessment