CVE-2026-41194 describes a CSRF vulnerability in FreeScout's mailbox OAuth disconnect action implemented as a GET request (`GET /mailbox/oauth-disconnect/{id}/{in_out}/{provider}`). Because this route does not require a CSRF token, an attacker can cause a logged-in mailbox administrator to unknowingly remove stored OAuth metadata by tricking them into visiting a malicious site. The issue affects FreeScout versions prior to 1.8.215 and is resolved in version 1.8.215.

An attacker can cause a logged-in mailbox administrator to unintentionally disconnect OAuth integrations by exploiting the CSRF vulnerability. This results in loss of stored OAuth metadata, potentially disrupting mailbox functionality. The CVSS score of 5.4 (medium severity) reflects limited impact on confidentiality but low integrity and availability impact.

Upgrade FreeScout to version 1.8.215 or later, where the vulnerability is fixed by requiring proper CSRF protection on the OAuth disconnect endpoint. Since no official patch link or advisory is provided, users should verify the version upgrade from the vendor's official channels. Patch status is not explicitly confirmed beyond the version fix note; check vendor advisory for current remediation guidance.