Remote Code Execution in Vibe-Trading Local API

Executive Summary

CVE-2026-58169 is a security vulnerability in Vibe-Trading versions before 0.1.10 where the local API server improperly trusts the TCP peer address for loopback clients, bypassing the API_AUTH_KEY bearer-token authentication. It also lacks Host header validation while binding to 0.0.0.0 with credentialed CORS enabled. This allows an attacker to use DNS rebinding attacks to trick a victim's browser into sending authenticated requests to the local API server as if they were from a trusted loopback client.

Because loopback requests automatically enable shell tools, an attacker can exploit this to execute arbitrary commands remotely as the API process user by reaching endpoints like POST /swarm/runs with a bash-enabled preset. Additionally, the attacker can modify LLM and data-source settings to redirect provider traffic and exfiltrate credentials.

The vulnerability arises from multiple issues: trusting loopback IP addresses without proper authentication, missing Host header validation allowing DNS rebinding, and enabling shell tools based solely on loopback requests without explicit operator consent.

Useful 0 Not Useful 0

Impact Analysis

This vulnerability can have severe impacts including unauthorized remote code execution on the system running the Vibe-Trading API. An attacker can execute arbitrary shell commands as the API process user, potentially compromising the entire system.

Attackers can also modify critical settings such as LLM provider configurations to redirect traffic and steal credentials, leading to data exfiltration and further compromise.

Additionally, the vulnerability allows attackers to perform privileged actions without authentication by exploiting the trust in loopback addresses and missing Host header validation, which can disrupt service availability or integrity.

Useful 0 Not Useful 0

Detection Guidance

Detection of this vulnerability involves identifying unauthorized or suspicious API requests that bypass authentication by exploiting loopback trust and DNS rebinding. Monitoring for unexpected POST requests to sensitive endpoints such as /swarm/runs or /live/runner/start from loopback addresses with unusual Host headers can indicate exploitation attempts.

Commands to detect potential exploitation could include network traffic inspection tools like tcpdump or Wireshark to capture local API traffic, filtering for requests to the vulnerable endpoints.

• Use tcpdump to capture traffic on the API port and filter for POST requests to sensitive endpoints:
• tcpdump -i lo -A 'tcp port <API_PORT>' | grep -E 'POST /swarm/runs|POST /live/runner/start|POST /system/shutdown'
• Check logs of the Vibe-Trading API server for requests with suspicious Host headers or missing/invalid bearer tokens despite originating from loopback addresses.
• Inspect browser activity or network logs for DNS rebinding attempts, such as requests from unexpected hostnames resolving to 127.0.0.1 or ::1.

Useful 0 Not Useful 0

Mitigation Strategies

Immediate mitigation steps include updating Vibe-Trading to version 0.1.10 or later, where the vulnerability is fixed by enforcing strict authentication and host validation.

If updating is not immediately possible, apply the following measures:

• Configure a strong API_AUTH_KEY to require bearer-token authentication for all API requests, including those from loopback clients.
• Enable strict Host header validation to reject requests with untrusted or attacker-controlled Host values.
• Set the environment variable VIBE_TRADING_ENABLE_SHELL_TOOLS=0 (or unset) to prevent automatic enabling of shell-capable tools for API-started agents.
• Implement firewall rules or network policies to restrict access to the API server port from untrusted networks.
• Educate users to avoid visiting untrusted or suspicious websites that could perform DNS rebinding attacks.

Useful 0 Not Useful 0