Coolify has a Privilege Escalation – low privileged users can...

7.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions up to and including v4.0.0-beta.434, a low privileged user (member) can see and use invitation links sent to an administrator. When they use the link before the legitimate recipient does, they are able to log in as an administrator, meaning they have successfully escalated their privileges. As of time of publication, it is unclear if a patch is available.

Basic Information

ID CVE-2025-64423

Source GitHub_M

Published Jan 5, 2026 at 20:41

Affected Product

Vendor coollabsio

Product coolify

Version <= 4.0.0-beta.434

Affected Versions coollabsio coolify <= 4.0.0-beta.434

CWE Classification

CWE-287

References

github.com /coollabsio/coolify/security/advisories/GHSA-4fqm-797g-7m6j

{
    "lastseen": "",
    "description": "Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions up to and including v4.0.0-beta.434, a low privileged user (member) can see and use invitation links sent to an administrator. When they use the link before the legitimate recipient does, they are able to log in as an administrator, meaning they have successfully escalated their privileges. As of time of publication, it is unclear if a patch is available.",
    "published": "2026-01-05T20:41:37.443Z",
    "modified": "2026-01-05T20:41:37.443Z",
    "type": "cve",
    "title": "Coolify has a Privilege Escalation - low privileged users can see and use admin invitation links",
    "source": "GitHub_M",
    "references": "https://github.com/coollabsio/coolify/security/advisories/GHSA-4fqm-797g-7m6j",
    "id": "CVE-2025-64423",
    "bulletinFamily": "",
    "cwe": [
        "CWE-287"
    ],
    "cvelist": null,
    "sourceData": "coollabsio coolify <= 4.0.0-beta.434",
    "sourceHref": "",
    "cvss": {
        "score": 7.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "coolify",
    "version": "<= 4.0.0-beta.434",
    "vendor": "coollabsio",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Coolify has a Privilege Escalation – low privileged users can see and use admin invitation links_CVE-2025-64423