{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2026-54695","assignerOrgId":"a0819718-46f1-4df5-94e2-005712e83aaa","state":"PUBLISHED","assignerShortName":"GitHub_M","dateReserved":"2026-06-15T22:58:06.562Z","datePublished":"2026-07-09T18:52:33.008Z","dateUpdated":"2026-07-10T14:13:04.675Z"},"containers":{"cna":{"title":"Pipecat: Telephony WebSocket `/ws` Unauthenticated Call-Control Abuse via Attacker-Supplied Call SID","problemTypes":[{"descriptions":[{"cweId":"CWE-862","lang":"en","description":"CWE-862: Missing Authorization","type":"CWE"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"HIGH","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"LOW","privilegesRequired":"NONE","scope":"CHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:H","version":"3.1"}}],"references":[{"name":"https://github.com/pipecat-ai/pipecat/security/advisories/GHSA-j8cv-x86q-rj85","tags":["x_refsource_CONFIRM"],"url":"https://github.com/pipecat-ai/pipecat/security/advisories/GHSA-j8cv-x86q-rj85"},{"name":"https://github.com/pipecat-ai/pipecat/pull/4660","tags":["x_refsource_MISC"],"url":"https://github.com/pipecat-ai/pipecat/pull/4660"},{"name":"https://github.com/pipecat-ai/pipecat/commit/3032da53434c5ef01d368654b3551cf21c50dec9","tags":["x_refsource_MISC"],"url":"https://github.com/pipecat-ai/pipecat/commit/3032da53434c5ef01d368654b3551cf21c50dec9"},{"name":"https://github.com/pipecat-ai/pipecat/commit/88440676996e5e548e1aecea5d565e1c48ccf6fa","tags":["x_refsource_MISC"],"url":"https://github.com/pipecat-ai/pipecat/commit/88440676996e5e548e1aecea5d565e1c48ccf6fa"},{"name":"https://github.com/pipecat-ai/pipecat/releases/tag/v1.4.0","tags":["x_refsource_MISC"],"url":"https://github.com/pipecat-ai/pipecat/releases/tag/v1.4.0"}],"affected":[{"vendor":"pipecat-ai","product":"pipecat","versions":[{"version":"< 1.4.0","status":"affected"}]}],"providerMetadata":{"orgId":"a0819718-46f1-4df5-94e2-005712e83aaa","shortName":"GitHub_M","dateUpdated":"2026-07-09T18:52:33.008Z"},"descriptions":[{"lang":"en","value":"Pipecat is an open-source Python framework for building real-time voice and multimodal conversational agents. Prior to 1.4.0, the pipecat development runner registers a /ws WebSocket endpoint for telephony testing that accepts connections without authentication, reads an attacker-supplied callSid from a Twilio stream-start handshake in src/pipecat/runner/utils.py, and passes it to TwilioFrameSerializer so the server can issue an authenticated Twilio REST API hang-up request with the server operator's credentials; equivalent unauthenticated call-control sinks exist for Telnyx and Plivo. This issue is fixed in version 1.4.0."}],"source":{"advisory":"GHSA-j8cv-x86q-rj85","discovery":"UNKNOWN"}},"adp":[{"references":[{"url":"https://github.com/pipecat-ai/pipecat/security/advisories/GHSA-j8cv-x86q-rj85","tags":["exploit"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-07-10T14:12:59.390627Z","id":"CVE-2026-54695","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-07-10T14:13:04.675Z"}}]}}