Tilt patched a high-severity flaw tracked as CVE-2026-55883 that allowed cross-site WebSocket hijacking of the local HUD server, exposing the /ws/view stream to reachable attackers when the interface was bound beyond localhost. Affected versions 0.24.0 through 0.37.3 could leak session state, Tiltfile contents, resource status, and live updates because the WebSocket relied on a CSRF token obtainable from the unauthenticated /api/websocket_token endpoint, and the upgrader accepted clients without an Origin header. The issue is rated CVSS 8.3 and is fixed in Tilt 0.37.4.
The remediation hardens Tilt's HTTP/HUD server beyond the WebSocket path by adding token-based authentication to sensitive and mutating API routes, validating Origin headers to block cross-origin abuse, setting the session cookie to SameSite=Strict, and applying the same token checks to proxy endpoints. Tilt also restricted /debug/pprof-style debug endpoints to loopback clients and updated CLI behavior to send the Tilt token in an X-Tilt-Token header, while warning that exposing the HUD on non-local interfaces has security implications. Users are advised to upgrade to 0.37.4, keep the HUD off the network where possible, and limit access if remote exposure is required.

Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
2 events from the most recent confirmed update back to the earliest known activity.
CVE-2026-55883 was published describing a high-severity cross-site WebSocket hijacking issue in Tilt affecting versions 0.24.0 through 0.37.3. The advisory states the unauthenticated /api/websocket_token endpoint and missing Origin enforcement on /ws/view could let a network-reachable attacker access the full HUD view stream, and notes the issue is fixed in version 0.37.4.
A Tilt GitHub commit introduced token-based authentication for multiple HUD/API routes, Origin header validation, SameSite=Strict cookies, loopback-only access for debug endpoints, and matching token checks for proxy access. The change also updated the CLI to send the Tilt token in requests and documented that disabling HUD auth is only intended behind trusted reverse proxies or load balancers.
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
2 references tracked. Mallory keeps watching after this page renders.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.