Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
Description
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases
AI Analyst Comment
Remediation
Apply vendor security updates immediately. Monitor for exploitation attempts and review access logs.
---METADATA---
VENDOR: CoolLabs
PRODUCT: Coolify
AFFECTED_VERSIONS: < 4.0.0-beta.474
CONFIDENCE: high
MISSING: none
---END_METADATA---
Description Summary:
Coolify contains a path traversal vulnerability that allows authenticated users to access or manipulate restricted files on the server.
Executive Summary:
A path traversal vulnerability in Coolify allows authenticated users to access sensitive files outside of the intended directory, threatening system confidentiality and integrity.
Vulnerability Details
CVE-ID: CVE-2026-42200
Affected Software: CoolLabs Coolify
Affected Versions: < 4.0.0-beta.474
Vulnerability: This is a Path Traversal (CWE-22) vulnerability that arises from the improper restriction of file paths. Authenticated attackers can supply specially crafted inputs to access directories or files that should be protected, leading to unauthorized read or write access.
Business Impact
The CVSS score of 8.8 indicates a high severity level. Successful exploitation could allow an attacker to read sensitive configuration files, credentials, or system files, leading to privilege escalation or complete system takeover.
Remediation Plan
Immediate Action: Update Coolify to version 4.0.0-beta.474 or newer to incorporate the necessary file path validation fixes.
Proactive Monitoring: Monitor filesystem access logs for attempts to access directories outside of the designated web root or expected application paths.
Compensating Controls: Use file system permissions to restrict the Coolify service account to the absolute minimum set of directories required for its operation.
Exploitation Status
Public Exploit Available: false
Analyst Notes: As of July 7, 2026, there is no public information indicating active exploitation of this vulnerability. However, due to the nature of the flaw, the potential for exploitation is high.
Analyst Recommendation
Path traversal vulnerabilities are frequently chained to achieve more severe impact. Administrators are strongly advised to apply the update to version 4.0.0-beta.474 as soon as possible to prevent unauthorized access to the host file system.