A critical set of vulnerabilities in the Gaudire Assassin game allows authenticated attackers to escalate privileges, manipulate game data, and perform server-side request forgery (SSRF).

The application fails to validate user input and perform authorization checks on the ‘/addJugador’ endpoint, allowing authenticated attackers to modify user profiles, falsify scores, self-assign administrative privileges, and conduct SSRF attacks.

The exploitation of these vulnerabilities poses a significant risk to the integrity and availability of the application. An attacker can manipulate game outcomes to obtain unauthorized prizes, perform privilege escalation to gain full administrative control, and leverage SSRF to access internal network services and sensitive data. With a CVSS score of 9.4, these flaws represent a critical risk of data breach and service disruption.

Immediate Action: Apply the latest security update provided by Gaudire immediately to patch the ‘/addJugador’ endpoint.

Proactive Monitoring: Review application logs for anomalous requests to the ‘/addJugador’ endpoint, particularly those involving unexpected ‘tokens’ or unusual URL parameters.

Compensating Controls: Deploy a Web Application Firewall (WAF) with strict input validation rules to block malicious payloads targeting the identified parameters.

Public Exploit Available: No

Given the critical severity of these flaws, immediate patching is required. Organizations should prioritize updating the Gaudire Assassin game and conduct a thorough audit of user accounts to ensure no unauthorized administrative accounts were created while the vulnerability was active.