8.8
/ 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Description
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.470, a critical Authenticated Host Remote Code Execution (RCE) vulnerability was discovered in Coolify. The flaw resides in the handling of user-defined build parameters for the Nixpacks build pack. Specifically, the install_command provided by a user is directly concatenated into a shell command string that is executed on the deployment host during the building phase. An attacker can leverage this to escape the intended build context and execute arbitrary commands with host-level privileges. This vulnerability is fixed in 4.0.0-beta.470.
AI Analysis
Authenticated Host Remote Code Execution (RCE) vulnerability in Coolify due to improper handling of user-defined build parameters for the Nixpacks build pack.
Basic Information
ID
CVE-2026-34597
Source
GitHub_M
Published
Jun 29, 2026 at 20:18
Affected Product
Vendor
coollabsio
Product
coolify
Version
< 4.0.0-beta.470
Affected Versions
coollabsio coolify < 4.0.0-beta.470
CWE Classification
AI Assessment
AI Score
8.8 / 10
AI Severity
High
Vendor
coollabsio
Product
Coolify
Version
< 4.0.0-beta.470