CVE-2026-39309 TriliumNext CVE debrief

Who should care

Anyone running Trilium Notes on macOS, especially users who grant privacy permissions, and administrators managing endpoints where local code execution or unexpected permission prompts are a concern.

Technical summary

The vulnerability is a local attack that leverages Electron configuration rather than a memory-safety flaw. The supplied description says the RunAsNode fuse allows Trilium Notes to be launched in a special Node.js mode with -e, enabling arbitrary command execution under the app’s identity. That identity is then used to surface macOS TCC prompts that look like they originated from Trilium Notes, which can mislead users into approving access to sensitive resources. NVD lists the issue with CVSS 3.1 vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N and maps weakness references to CWE-290 and CWE-451.

Defensive priority

Medium. The attack is local and requires user interaction, but it can undermine macOS privacy controls and prompt integrity for a trusted app.

Recommended defensive actions

• Upgrade Trilium Notes to version 0.102.2 or later.
• Review macOS privacy and TCC permissions granted to Trilium Notes and revoke anything unnecessary.
• Treat unexpected permission dialogs shown while using Trilium Notes as suspicious, especially if they request camera, microphone, screen, or file access.
• Restrict local code execution paths and application launch options on managed macOS endpoints where practical.
• Monitor release notes and the GitHub security advisory for any follow-up guidance.

Evidence notes

The source corpus includes an official NVD record published and modified on 2026-05-20, with GitHub release and security advisory links indicating the fix in v0.102.2. NVD marks the record as Deferred and provides the CVSS vector AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N. No facts beyond the supplied description, NVD metadata, and official GitHub links were used.

Official resources