Vulnerability Description
In the uncurl_ws_accept function in uncurl.c in uncurl before 0.07, as used in Parsec before 140-3, insufficient Origin header validation (accepting an arbitrary substring match) for WebSocket API requests allows remote attackers to bypass intended access restrictions. In Parsec, this means full control over the victim's computer.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Uncurl Project | Uncurl | < 0.07 |
| Parsecgaming | Parsec | < 140-3 |
Related Weaknesses (CWE)
References
- https://gist.github.com/Zenexer/ac7601c0e367d876353137e5099b18a7
- https://github.com/chrisd1100/uncurl/commit/448cd13e7b18c83855d706c564341ddd1e38PatchThird Party Advisory
- https://github.com/chrisd1100/uncurl/releases/tag/0.07Third Party Advisory
- https://gist.github.com/Zenexer/ac7601c0e367d876353137e5099b18a7
- https://github.com/chrisd1100/uncurl/commit/448cd13e7b18c83855d706c564341ddd1e38PatchThird Party Advisory
- https://github.com/chrisd1100/uncurl/releases/tag/0.07Third Party Advisory
FAQ
What is CVE-2018-6651?
CVE-2018-6651 is a vulnerability with a CVSS score of 8.8 (HIGH). In the uncurl_ws_accept function in uncurl.c in uncurl before 0.07, as used in Parsec before 140-3, insufficient Origin header validation (accepting an arbitrary substring match) for WebSocket API req...
How severe is CVE-2018-6651?
CVE-2018-6651 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-6651?
Check the references section above for vendor advisories and patch information. Affected products include: Uncurl Project Uncurl, Parsecgaming Parsec.