Description
Teable before 2026-06-15T04-43-24Z.1912 contains an improper access control vulnerability that allows anonymous attackers to access hidden field data by supplying arbitrary field IDs in the projection parameter of the share view records endpoint. Attackers can enumerate hidden field IDs from share metadata and specify them in projection parameters to read field values that are intended to be restricted from public view.
Published: 2026-06-29
Score: 6.9 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

Teable before the release dated 2026-06-15T04-43-24Z.1912 contains an improper access control flaw that lets anonymous users read field values that should be hidden. By sending arbitrary field identifiers in the projection parameter of the share view records endpoint, an attacker can enumerate hidden field IDs from share metadata and retrieve field contents that are intended to remain restricted. The weakness is a classic example of missing authorization control, represented by CWE‑639.

Affected Systems

The affected product is Teable from teableio. All releases prior to the release tagged 2026-06-15T04-43-24Z.1912 are vulnerable.

Risk and Exploitability

The CVSS score of 6.9 indicates a moderate severity vulnerability with a moderate impact on confidentiality. The EPSS score is not available, and the vulnerability is not listed in the CISA KEV catalog. Attackers only need unauthenticated network access to the share view records endpoint, and can easily construct requests with arbitrary projection parameters to extract hidden field data. No complex prerequisites are described, so the likelihood of exploitation is considered moderate to high in environments that expose the endpoint to the internet.

Generated by OpenCVE AI on June 29, 2026 at 19:26 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Install teable release 2026-06-15T04-43-24Z.1912 or later to remove the access control bypass.
  • If an immediate upgrade is not possible, block or restrict unauthenticated access to the share view records endpoint and enforce authentication.
  • Verify that hidden fields are correctly configured and review any custom projections to ensure that hidden data cannot be referenced by users without proper authorization.

Generated by OpenCVE AI on June 29, 2026 at 19:26 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 29 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 29 Jun 2026 18:15:00 +0000

Type Values Removed Values Added
Description Teable before 2026-06-15T04-43-24Z.1912 contains an improper access control vulnerability that allows anonymous attackers to access hidden field data by supplying arbitrary field IDs in the projection parameter of the share view records endpoint. Attackers can enumerate hidden field IDs from share metadata and specify them in projection parameters to read field values that are intended to be restricted from public view.
Title Teable - Unauthenticated Hidden Field Disclosure via Projection Parameter Override
Weaknesses CWE-639
References
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'}

cvssV4_0

{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-06-29T18:22:31.274Z

Reserved: 2026-06-23T01:24:27.650Z

Link: CVE-2026-56781

cve-icon Vulnrichment

Updated: 2026-06-29T18:22:24.527Z

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-29T19:30:02Z

Weaknesses
  • CWE-639

    Authorization Bypass Through User-Controlled Key