CVE-2026-53981
7.6 HIGHCap-go prior to 12.128.2 contains an account takeover vulnerability in its email change mechanism that allows an attacker with temporary ...
Published: 2026-06-12 · Last updated: 2026-06-12
Severity and scoring
- CVSS
- 7.6 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L
- CWE
- CWE-306
Description
Cap-go prior to 12.128.2 contains an account takeover vulnerability in its email change mechanism that allows an attacker with temporary authenticated session access to change the registered email address without re-authentication such as password or MFA verification. Attackers can redirect verification to an attacker-controlled email address and subsequently perform a password reset to permanently take over the victim's account.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-53981
- [Other]https://github.com/Cap-go/capgo/commit/6685e5f11adef257bf3d085e481f4d8ebcec602e
- [Other]https://github.com/Cap-go/capgo/security/advisories/GHSA-w56g-jv78-hf79
- [Other]https://www.vulncheck.com/advisories/cap-go-account-takeover-via-unauthenticated-email-change-mechanism
- [Other]https://github.com/Cap-go/capgo/security/advisories/GHSA-w56g-jv78-hf79
Related CVEs
Same CWE
- CVE-2026-12183 — Nefteprodukttekhnika BUK TS-G Gas Station Automation System 2.9.1 through 2.10.2 on Linux contains an Improper Authentication vulnerabili... (9.8 CRITICAL)
- CVE-2026-53868 — Capgo before 12.128.2 contains a denial of service vulnerability allowing attackers to register accounts using arbitrary email addresses ... (7.5 HIGH)
- CVE-2026-50287 — AgenticMail gives AI agents real email addresses and phone numbers
- CVE-2026-50085 — The Aqara Board service (op-test.aqara.com) accepts arbitrary MQTT command payloads, and forwards them to the platfom's HiveMQ broker wit... (8.6 HIGH)
- CVE-2026-50082 — The Aqara Cloud Developer Portal (developer.aqara.com) issued a developer token to any email address supplied by the attacker (6.5 MEDIUM)