| ベンダー | プロダクト | Version Range | ステータス |
|---|---|---|---|
| coollabsio | coolify | < 4.0.0-beta.474 | affected |
高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。
| ベンダー | プロダクト | 影響を受けるバージョン | CPE | 購読 |
|---|---|---|---|---|
| coollabsio | coolify | < 4.0.0-beta.474 | - |
| # | POC説明 | ソースリンク | Shenlongリンク |
|---|
公開POCは見つかりませんでした。
ログインしてAI POCを生成| CVE-2026-34047 | 9.9 CRITICAL | Coolify: WebSocket Endpoint Access Control Flaw Leading to Remote Code Execution |
| CVE-2026-34037 | 9.9 CRITICAL | Cross-Tenant Resource Cloning via Broken Object-Level Authorization in cloneTo() |
| CVE-2026-34048 | 9.9 CRITICAL | Coolify: Missing authorization on terminal websocket bootstrap routes allows low-privilege |
| CVE-2026-42200 | 8.8 HIGH | Coolify: PostgreSQL Init Script Path Traversal Leads to Arbitrary File Write and Root RCE |
| CVE-2026-34158 | 8.8 HIGH | Coolify: Command injection via single-quote breakout in Docker Compose custom commands |
| CVE-2026-34034 | 8.8 HIGH | Coolify: Host RCE via Sentinel token injection |
| CVE-2026-34168 | 8.8 HIGH | Coolify: Command injection via unsanitized persistent storage name in docker volume comman |
| CVE-2026-34058 | 8.8 HIGH | Coolify: OS Command Injection via Unmanaged Container Operations - Remote Code Execution |
| CVE-2026-34152 | 8.8 HIGH | Coolify: Command Injection via Newline in Pre/Post Deployment Commands (Heredoc Transport) |
| CVE-2026-34035 | 8.8 HIGH | Coolify: Host RCE via Log Drain secret/env command injection |
| CVE-2026-34057 | 8.8 HIGH | Coolify: Authenticated Remote Code Execution via Command Injection in Database Import Cont |
| CVE-2026-42143 | 8.8 HIGH | Coolify: OS Command Injection via Persistent Volume Names - Root RCE on Managed Servers |
| CVE-2026-34171 | 8.0 HIGH | Coolify: Account takeover via CSRF-able GET endpoint that resets password to attacker-know |
| CVE-2026-34044 | 7.7 HIGH | Coolify: Cross-team IDOR in logs component (resource lookup not team-scoped) |
| CVE-2026-34198 | 5.3 MEDIUM | Coolify: Password reset link poisoning via X-Forwarded-Host header spoofing |
| CVE-2026-42147 | 4.9 MEDIUM | Coolify: SSRF via S3 Storage Endpoint in testConnection() |
| CVE-2026-34170 | 4.3 MEDIUM | Coolify: Server-Side Request Forgery via attacker-controlled GitHub App API URL |
| CVE-2026-34149 | 3.3 LOW | Coolify: Authenticated Host-Level RCE via Unescaped Database Credentials in Backup Jobs |
| CVE-2026-42145 | 3.1 LOW | Coolify: File Upload Without Type or Size Validation in Database Backup Restore |
| CVE-2026-42172 | 3.1 LOW | Coolify: Sanctum API Tokens Have No Expiration — Leaked Tokens Grant Permanent Access |
まだコメントはありません