[CYBERDIGEST]
⊞ Dashboard ⚡ Intelligence 📝 Reports 📚 Global Threats 💻 Hack Lab 🗄️ Resources ⌬ 0xJerry's Lab
📡 RSS Feed
System Online

Tag

#Coolify

articleHIGH 8.8

Authenticated Command Injection in Coolify: CVE-2026-27957

A critical vulnerability (CVE-2026-27957) with a CVSS score of 8.8 was discovered in Coolify, an open-source tool for managing servers, applications, and databases. This authenticated command injection vulnerability allows any authenticated user to execute arbitrary commands as the configured SSH user on the managed server host, potentially leading to complete compromise of the managed server and associated docker containers. The vulnerability is fixed in version 4.0.0-beta.464. Organizations using Coolify should immediately upgrade to the patched version.

Jul 1, 20261 source