CVE-2026-56323
Received Received - Intake
Information Disclosure in Capgo Before 12.128.2

Publication date: 2026-06-22

Last updated on: 2026-06-22

Assigner: VulnCheck

Description
Capgo before 12.128.2 contains an information disclosure vulnerability in the /functions/v1/channel_self endpoint that allows unauthenticated attackers to enumerate non-public channel names and determine app existence and subscription status. Remote attackers can send GET requests with arbitrary app_id parameters to disclose internal rollout channels, enumerate valid applications across tenants, and leak billing status without authentication or device binding.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-22
Last Modified
2026-06-22
Generated
2026-06-23
AI Q&A
2026-06-23
EPSS Evaluated
N/A
NVD
CVE-2026-56323
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
capgo capgo to 12.128.2 (exc)
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-200 The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in Capgo versions before 12.128.2 in the /functions/v1/channel_self endpoint. It allows unauthenticated attackers to send GET requests with arbitrary app_id parameters to the endpoint.

By doing so, attackers can enumerate non-public channel names, determine whether certain applications exist, and check subscription and billing status without needing authentication or device binding.

Impact Analysis

The vulnerability can lead to information disclosure where attackers can learn about internal rollout channels, valid applications across tenants, and billing status.

This exposure can compromise confidentiality by revealing sensitive internal information to unauthorized parties, potentially aiding further attacks or unauthorized access.

Detection Guidance

This vulnerability involves unauthenticated GET requests to the /functions/v1/channel_self endpoint with arbitrary app_id parameters to enumerate non-public channel names and disclose information.

To detect this vulnerability on your network or system, you can monitor for unusual or unauthorized GET requests targeting the /functions/v1/channel_self endpoint, especially those containing varying app_id parameters.

Specific commands are not provided in the available information.

Mitigation Strategies

The provided information does not include specific mitigation steps.

However, as the vulnerability allows unauthenticated access to sensitive information, immediate mitigation could involve restricting access to the /functions/v1/channel_self endpoint, implementing authentication and authorization checks, and updating Capgo to version 12.128.2 or later where the vulnerability is fixed.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-56323. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart