Description
Capgo before 12.128.2 contains a broken row level security policy in the org_users table that allows authenticated users to elevate privileges from admin to super_admin. Attackers can exploit the insufficient RLS enforcement to gain unauthorized super_admin access and compromise system security.
Published: 2026-06-21
Score: 7 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Capgo versions prior to 12.128.2 contain a broken row‑level security policy on the org_users table. The policy fails to restrict users with admin privileges from accessing records belonging to super_admin accounts. As a result, an attacker who has already authenticated as an admin can elevate their access level to super_admin, granting full system control and the ability to modify or delete critical data. The weakness is a classic privilege escalation scenario rooted in inadequate access controls (CWE‑266).

Affected Systems

The vulnerability affects the Capgo application (Capgo:Capgo). No specific affected versions are listed beyond the claim that all releases before 12.128.2 are vulnerable, so any deployment running a pre‑12.128.2 version is at risk.

Risk and Exploitability

The CVSS score of 7 indicates a moderate severity. No EPSS value is published and the issue is not listed in CISA’s KEV catalog, suggesting limited known exploitation. The attack requires the attacker to be an authenticated admin user; once authenticated, the attacker can exploit the insufficient RLS enforcement to gain super_admin rights. The nature of the flaw allows exploitation without elevated network privileges or additional exploits.

Generated by OpenCVE AI on June 21, 2026 at 16:40 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Capgo release (12.128.2 or newer) to resolve the RLS flaw.
  • If immediate patching is not possible, temporarily disable or lock super_admin accounts until the patch can be deployed.
  • Review and harden row‑level security policies on the org_users table to ensure that non‑super_admin users cannot access super_admin records.

Generated by OpenCVE AI on June 21, 2026 at 16:40 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 24 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Cap-go
Cap-go cap-go
Vendors & Products Cap-go
Cap-go cap-go

Mon, 22 Jun 2026 14:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sun, 21 Jun 2026 15:00:00 +0000

Type Values Removed Values Added
Description Capgo before 12.128.2 contains a broken row level security policy in the org_users table that allows authenticated users to elevate privileges from admin to super_admin. Attackers can exploit the insufficient RLS enforcement to gain unauthorized super_admin access and compromise system security.
Title Capgo - Privilege Escalation via Broken Row Level Security in org_users
Weaknesses CWE-266
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H'}

cvssV4_0

{'score': 7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-22T13:19:19.042Z

Reserved: 2026-06-19T21:53:16.001Z

Link: CVE-2026-56251

cve-icon Vulnrichment

Updated: 2026-06-22T13:19:08.263Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T16:08:29Z

Weaknesses
  • CWE-266

    Incorrect Privilege Assignment