CNNVD-202601-915 Information
Jan 05, 2026
cve
CNNVD ID
CNNVD-202601-915
Related CVE
- CNNVD Published: 2026-01-05
Description (Chinese)
Coolify是coolLabs开源的一个开源和自托管的 Heroku/Netlify/Vercel 替代品。 Coolify v4.0.0-beta.420.8及之前版本存在安全漏洞,该漏洞源于API端点存在信息泄露,可能导致未经授权的电子邮件地址更改。
Description (English)
Coolify is an open-source and self-hosted Heroku/Netlift/Vercel alternative to the coolLabs open source. There is a security loophole in Coolify v.4.0.0-beta.420.8 and earlier versions, which stems from information leaks at the API endpoint, which may result in unauthorized changes in e-mail addresses.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
coolLabs
Published
2026-01-05
Last Modified
2026-02-24
References
https://github.com/coollabsio/coolify/security/advisories/GHSA-927g-56xp-6427 https://access.redhat.com/security/cve/cve-2025-59955
Patch
https://github.com/coollabsio/coolify/releases
Share on: