CVE-2026-53867: Incomplete Cleanup in Cap-go capgo
Capgo versions prior to 12.128.2 do not properly delete previously uploaded profile images from backend storage when users replace or remove them. This results in orphaned image files remaining accessible via previously generated URLs, allowing unauthorized retrieval of user-uploaded content. The vulnerability has a medium severity rating with a CVSS score of 5.3.
AI Analysis
Technical Summary
CVE-2026-53867 describes an incomplete cleanup vulnerability in Capgo before version 12.128.2. When users replace or remove profile images, the application fails to delete the old images from backend storage. Consequently, these orphaned images remain accessible through existing URLs, enabling unauthorized access to user-uploaded content. The vulnerability does not require user interaction and has low attack complexity, but requires low privileges to exploit.
Potential Impact
Unauthorized parties can access previously uploaded profile images that should have been deleted, potentially exposing sensitive user content. This unauthorized retrieval compromises user privacy but does not involve code execution or system compromise.
Mitigation Recommendations
No official patch or remediation level is currently documented. Users should upgrade to version 12.128.2 or later once available, as this version is indicated to fix the issue. Until then, monitor vendor advisories for updates. There is no indication that this is a cloud service with vendor-managed remediation.
CVE-2026-53867: Incomplete Cleanup in Cap-go capgo
Description
Capgo versions prior to 12.128.2 do not properly delete previously uploaded profile images from backend storage when users replace or remove them. This results in orphaned image files remaining accessible via previously generated URLs, allowing unauthorized retrieval of user-uploaded content. The vulnerability has a medium severity rating with a CVSS score of 5.3.
CVSS v4.0
Score 5.3medium
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-53867 describes an incomplete cleanup vulnerability in Capgo before version 12.128.2. When users replace or remove profile images, the application fails to delete the old images from backend storage. Consequently, these orphaned images remain accessible through existing URLs, enabling unauthorized access to user-uploaded content. The vulnerability does not require user interaction and has low attack complexity, but requires low privileges to exploit.
Potential Impact
Unauthorized parties can access previously uploaded profile images that should have been deleted, potentially exposing sensitive user content. This unauthorized retrieval compromises user privacy but does not involve code execution or system compromise.
Mitigation Recommendations
No official patch or remediation level is currently documented. Users should upgrade to version 12.128.2 or later once available, as this version is indicated to fix the issue. Until then, monitor vendor advisories for updates. There is no indication that this is a cloud service with vendor-managed remediation.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulnCheck
- Date Reserved
- 2026-06-10T21:23:54.283Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a2c871ee617e2d834cccefe
Added to database: 6/12/2026, 10:24:30 PM
Last enriched: 6/12/2026, 10:39:53 PM
Last updated: 6/12/2026, 11:58:44 PM
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.