Description
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Prior to 4.0.0-beta.464, the `GET /api/v1/deployments/{uuid}` endpoint allows any authenticated user to access deployment details belonging to any team, bypassing team-based authorization. The $teamId is extracted from the authentication token but never used to scope the database query. This vulnerability is fixed in 4.0.0-beta.464.
Severity (CVSS)
| Base score | 5 |
|---|---|
| Severity | Medium |
| Version | CVSS 3.1 |
| Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N |
| Provided by | CNA |
Weaknesses
- CWE-639 — CWE-639: Authorization Bypass Through User-Controlled Key
Affected products
| Vendor | Product | Versions |
|---|---|---|
| coollabsio | coolify | < 4.0.0-beta.464 |
References
- https://github.com/coollabsio/coolify/security/advisories/GHSA-f6h4-qx26-76jv (x_refsource_CONFIRM)
Generated from the official CVE List on 01 Jul 2026 07:05 UTC.