CVE-2026-55583

Source
https://cve.org/CVERecord?id=CVE-2026-55583
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-55583.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-55583
Aliases
  • GHSA-v39r-w5vg-j9pp
Published
2026-06-24T19:21:35.557Z
Modified
2026-07-15T01:49:02.242826469Z
Severity
  • 7.6 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N CVSS Calculator
Summary
Twenty: Cross-workspace IDOR in AgentTurnResolver
Details

Twenty is an open-source CRM (customer relationship management) platform. Prior to 2.9.0, Twenty was vulnerable to a cross-workspace insecure direct object reference (IDOR) in the AI agent monitor's AgentTurnResolver, in packages/twenty-server/src/engine/metadata-modules/ai/ai-agent-monitor/reso lvers/agent-turn.resolver.ts. The agentTurns(agentId) query and the evaluateAgentTurn(turnId) mutation looked up rows by agentId or id only; although AgentTurnEntity has a workspaceId column, it was not included in the WHERE clause, and the class-level guards only checked that the caller was authenticated in some workspace rather than that the requested object belonged to it, with the same flaw present in agent-turn-grader.service.ts. As a result, any authenticated user with the AI settings flag, a workspace owner by default, could target any other workspace on the same instance given the victim's agentId or turnId: agentTurns returned the victim's full chat history including message parts such as raw chat text, tool calls, and tool outputs, while evaluateAgentTurn inserted an agentTurnEvaluation row with the victim's workspaceId and fed the victim's turn into the default LLM. The agentId and turnId are non-guessable UUIDs but are exposed in the URL of the settings page. This issue is fixed in version 2.9.0.

Database specific
{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-639"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55583.json"
}
References

Affected packages

Git / github.com/twentyhq/twenty

Affected ranges

Type
GIT
Repo
https://github.com/twentyhq/twenty
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "AFFECTED_FIELD",
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.9.0"
        }
    ]
}

Affected versions

v0.*
v0.1.0
v0.1.1
v0.1.2
v0.1.3
v0.1.4
v0.10.0
v0.10.1
v0.10.2
v0.10.3
v0.10.4
v0.10.5
v0.10.6
v0.11.0
v0.11.1
v0.11.2
v0.11.3
v0.12.0
v0.12.1
v0.12.2
v0.2.1
v0.2.2
v0.20.0
v0.20.1
v0.20.2
v0.21
v0.21.0
v0.21.2
v0.22.0
v0.22.1
v0.23.1
v0.23.2
v0.24.0
v0.24.1
v0.3.3
v0.30.0
v0.31.0
v0.4.0
v0.44.9
v0.51.10
v0.51.11
v0.53.0
v0.53.2
v0.53.4
v0.53.5
v0.53.6
v0.53.7
v0.54.7
v0.55.0
v0.55.2
v0.55.3
v0.55.4
v0.55.5
v0.55.7
v0.60.2
v0.60.4
v0.60.5
v0.60.6
v0.60.7
v1.*
v1.0.0
v1.0.4
v1.1.0
v1.10.0
v1.10.2
v1.10.3
v1.10.4
v1.10.5
v1.10.6
v1.10.7
v1.11.0
v1.11.14
v1.11.3
v1.11.4
v1.11.5
v1.11.6
v1.12.0
v1.12.12
v1.12.13
v1.12.14
v1.12.15
v1.12.17
v1.12.18
v1.12.3
v1.12.4
v1.12.5
v1.12.6
v1.12.7
v1.12.8
v1.13.0
v1.13.1
v1.13.10
v1.13.11
v1.13.2
v1.13.3
v1.13.8
v1.13.9
v1.14.0
v1.14.1
v1.14.2
v1.15.0
v1.15.10
v1.15.3
v1.15.7
v1.15.8
v1.15.9
v1.16.0
v1.16.10
v1.16.13
v1.16.14
v1.16.15
v1.16.16
v1.16.9
v1.17.0
v1.19.0
v1.19.1
v1.19.10
v1.19.11
v1.19.12
v1.19.13
v1.19.2
v1.19.3
v1.19.4
v1.19.5
v1.19.6
v1.19.7
v1.19.8
v1.2.0
v1.20.0
v1.20.10
v1.20.11
v1.20.2
v1.20.3
v1.20.4
v1.20.5
v1.20.6
v1.20.7
v1.21.0
v1.22.0
v1.23.0
v1.23.1
v1.23.3
v1.23.4
v1.23.5
v1.23.6
v1.23.7
v1.23.8
v1.23.9
v1.3.0
v1.3.1
v1.4.0
v1.4.1
v1.4.10
v1.4.11
v1.4.2
v1.4.3
v1.4.4
v1.4.5
v1.4.7
v1.4.8
v1.4.9
v1.5.0
v1.6.0
v1.6.8
v1.7.0
v1.7.1
v1.7.10
v1.7.2
v1.7.3
v1.7.6
v1.7.7
v1.7.8
v1.7.9
v1.8.0
v1.8.1
v1.8.10
v1.8.11
v1.8.2
v1.8.3
v1.8.4
v1.8.5
v1.8.6
v1.8.7
v1.8.8
v1.8.9
v2.*
v2.0.0
v2.0.1
v2.0.2
v2.1.0
v2.2.0
v2.3.0
v2.4.0
v2.5.0
v2.5.1
v2.5.2
v2.6.0
v2.6.1
v2.7.0
v2.8.0
v2.8.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-55583.json"