Arbitrary File Overwrite Vulnerability in Capgo CLI by Capgo
CVE-2026-56236

6.8MEDIUM

Key Information:

Vendor: Capgo
Status: Cli
Vendor: CVE Published:; 21 June 2026

What is CVE-2026-56236?

The Capgo CLI version prior to 12.128.2 features vulnerabilities that allow arbitrary file overwrite due to insufficient validation of symlinks during login and build credential operations. Attackers can exploit this flaw by creating malicious symlinks within repositories, enabling them to overwrite any target files or expose sensitive credentials with broad read permissions when developers run the CLI. This poses a significant risk to secure software development practices, allowing unauthorized access to critical information.

Affected Version(s)

cli 0 < 12.128.2

cli 12.128.2

References

https://github.com/Cap-go/capgo/security/advisories/GHSA-...

vendor-advisory

https://www.vulncheck.com/advisories/capgo-cli-arbitrary-...

third-party-advisory

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 21, 2026
Vulnerability Reserved
Jun 19, 2026

Credit

Judel777

CVE-2026-56236 Data

JSON