Coolify is affected by a high-severity vulnerability that poses a significant risk to the integrity and security of managed servers and databases.

This vulnerability affects the Coolify management platform, potentially allowing an attacker to manipulate server or application configurations. The specific authentication requirements remain to be clarified by the vendor, though the nature of the tool suggests a risk of unauthorized administrative access.

With a CVSS score of 7.7, this vulnerability is classified as High. Successful exploitation could lead to full system compromise, unauthorized access to sensitive databases, and total loss of availability for hosted applications, causing severe operational disruption and potential data exfiltration.

Immediate Action: Identify all instances of Coolify within the environment and apply the latest security patches provided by the vendor immediately.

Proactive Monitoring: Review system access logs and application audit trails for anomalous administrative activity or unauthorized configuration changes.

Compensating Controls: Restrict network access to the Coolify dashboard using IP allowlisting and ensure it is not exposed to the public internet.

Public Exploit Available: false

Given the critical role Coolify plays in managing infrastructure, this vulnerability must be treated with high priority. Organizations should prioritize patching and verify that all administrative interfaces are properly secured against external access to mitigate the risk of compromise.