Primary

Context

Caido Web Security Auditing Toolkit DNS Rebinding Vulnerability Leading to Remote Code Execution

Vulnerability

A vulnerability in Caido, a web security auditing toolkit, prior to version 0.48.0, allows for remote code execution via DNS rebinding attacks. The lack of protection against DNS rebinding enables an attacker-controlled domain to hijack the authentication flow of Caido. This exploitation can occur during the initial setup of Caido or by initiating a new authentication flow on a previously configured instance. In both scenarios, the victim must authorize the request on dashboard.caido.io.

Impact

Exploitation of this vulnerability allows for remote command execution on the affected system where Caido is running.

Remediation

Users are advised to upgrade to Caido version 0.48.0 or later, where this vulnerability has been patched.

Added: Jun 9, 2025, 9:20 PM

Updated: Jun 9, 2025, 9:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

6.4

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

6.4

remediation

7.7

relevance

0.2

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Caido Web Security Auditing Toolkit DNS Rebinding Vulnerability Leading to Remote Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating