CVE 8.8 HIGH

Coolify: Authenticated Host RCE_CVE-2026-34597

8.8 / 10
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.470, a critical Authenticated Host Remote Code Execution (RCE) vulnerability was discovered in Coolify. The flaw resides in the handling of user-defined build parameters for the Nixpacks build pack. Specifically, the install_command provided by a user is directly concatenated into a shell command string that is executed on the deployment host during the building phase. An attacker can leverage this to escape the intended build context and execute arbitrary commands with host-level privileges. This vulnerability is fixed in 4.0.0-beta.470.

AI Analysis

Authenticated Host Remote Code Execution (RCE) vulnerability in Coolify due to improper handling of user-defined build parameters for the Nixpacks build pack.

Basic Information

ID CVE-2026-34597
Source GitHub_M
Published Jun 29, 2026 at 20:18

Affected Product

Vendor coollabsio
Product coolify
Version < 4.0.0-beta.470
Affected Versions coollabsio coolify < 4.0.0-beta.470

CWE Classification

AI Assessment

AI Score 8.8 / 10
AI Severity High
Vendor coollabsio
Product Coolify
Version < 4.0.0-beta.470

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.