CVE-2026-40570

Summary

FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.213, the load_customer_info action in POST /conversation/ajax returns complete customer profile data to any authenticated user without verifying mailbox access. An attacker only needs a valid email address to retrieve all customer PII. Version 1.8.213 fixes the issue.

Affected Software

VendorProductVersion RangeStatus
freescout-help-deskfreescout< 1.8.213affected

Weaknesses

  • CWE-639: CWE-639: Authorization Bypass Through User-Controlled Key
  • CWE-862: CWE-862: Missing Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

Additional References

References