Primary

Context

Coolify Remote Code Execution Vulnerability in Application Deployment Workflow

Vulnerability

A remote code execution vulnerability has been identified in Coolify versions prior to v4.0.0-beta.420.6. This vulnerability arises within the application deployment workflow, where authenticated users with low-level member privileges can inject arbitrary Docker Compose directives during project creation. By crafting a malicious service definition that mounts the host root filesystem, an attacker could gain full root access to the underlying server.

Impact

Exploitation of this vulnerability allows for remote code execution on the server with root privileges.

Remediation

Users are advised to update to Coolify version v4.0.0-beta.420.7 or later, where this vulnerability has been fixed.

Added: Aug 27, 2025, 5:21 PM

Updated: Aug 27, 2025, 5:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

5.2

remediation

7.7

relevance

0.4

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Coolify Remote Code Execution Vulnerability in Application Deployment Workflow

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating