What is CVE-2026-47123?

CVE-2026-47123 is a high-severity vulnerability in Freescout-help-desk Freescout, classified under Authentication Bypass by Spoofing. CVSS score: 7.5/10. Published 2026-05-29.

How severe is CVE-2026-47123?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Freescout-help-desk Freescout

CVE-2026-47123

FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to 1.8.220, the email processing pipeline in FreeScout's FetchEmails command has two code paths for identifying agent (user) replies based on In-Reply…

EPSS: 0.000 (4.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:N.

Affected products

Freescout-help-desk Freescout — versions < 1.8.220

Weakness classification (CWE)

References

security-advisories@github.com (x_refsource_MISC)
security-advisories@github.com (x_refsource_CONFIRM)
134c704f-9b21-4f2e-91b3-4a467353bcc0

Frequently asked questions

What is CVE-2026-47123?: CVE-2026-47123 is a high-severity vulnerability in Freescout-help-desk Freescout, classified under Authentication Bypass by Spoofing. CVSS score: 7.5/10. Published 2026-05-29.
How severe is CVE-2026-47123?: High severity. CVSS v3 base score is 7.5 out of 10.