GHSA-f8rq-8r29-248p
Capgo versions before 12.128.2 have an information disclosure vulnerability in the get_orgs_v7(userid) RPC function. This function is intended to be private but remains publicly accessible, allowing unauthenticated attackers to supply arbitrary user UUIDs and retrieve sensitive information such as organization membership, roles, management emails, and billing metadata of other users.
AI Analysis
Technical Summary
An information disclosure vulnerability exists in Capgo prior to version 12.128.2 within the get_orgs_v7(userid) RPC function. The function does not enforce intended private access controls, remaining publicly invokable. This allows unauthenticated attackers to query arbitrary user UUIDs and obtain foreign users' organization membership details, roles, management contact emails, and billing metadata. The vulnerability is classified under CWE-862 (Missing Authorization). No patch or remediation details are provided in the available data.
Potential Impact
Unauthenticated attackers can access sensitive organizational data of other users, including membership, roles, management emails, and billing metadata. This exposure can lead to privacy violations and potential misuse of disclosed information. There is no indication of remote code execution or system compromise, but the confidentiality of user and organizational data is compromised.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict access to the get_orgs_v7(userid) RPC function to authorized users only, for example by implementing network-level access controls or authentication proxies. Monitor for any updates from the vendor regarding patches or official mitigations.
GHSA-f8rq-8r29-248p
Description
Capgo versions before 12.128.2 have an information disclosure vulnerability in the get_orgs_v7(userid) RPC function. This function is intended to be private but remains publicly accessible, allowing unauthenticated attackers to supply arbitrary user UUIDs and retrieve sensitive information such as organization membership, roles, management emails, and billing metadata of other users.
CVSS v4.0
Affected software
Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
An information disclosure vulnerability exists in Capgo prior to version 12.128.2 within the get_orgs_v7(userid) RPC function. The function does not enforce intended private access controls, remaining publicly invokable. This allows unauthenticated attackers to query arbitrary user UUIDs and obtain foreign users' organization membership details, roles, management contact emails, and billing metadata. The vulnerability is classified under CWE-862 (Missing Authorization). No patch or remediation details are provided in the available data.
Potential Impact
Unauthenticated attackers can access sensitive organizational data of other users, including membership, roles, management emails, and billing metadata. This exposure can lead to privacy violations and potential misuse of disclosed information. There is no indication of remote code execution or system compromise, but the confidentiality of user and organizational data is compromised.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is available, restrict access to the get_orgs_v7(userid) RPC function to authorized users only, for example by implementing network-level access controls or authentication proxies. Monitor for any updates from the vendor regarding patches or official mitigations.
Technical Details
- Gcve Source
- db.gcve.eu
- Osv Id
- GHSA-f8rq-8r29-248p
- Osv Schema Version
- 1.4.0
- Aliases
- ["CVE-2026-56279"]
- Ecosystems
- []
- Database Specific Severity
- HIGH
- Cvss Version
- 4.0
Threat ID: 6a520eee68715ace4391d646
Added to database: 07/11/2026, 09:37:50 UTC
Last enriched: 07/11/2026, 10:10:37 UTC
Last updated: 07/11/2026, 20:38:33 UTC
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.