Vulnerability in Coollabsio Coolify
CVE-2025-59955
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. Coolify versions prior to and including v4.0.0-beta.420.8 have an information disclosure vulnerability in the `/api/v1/teams/{team_id}/memb…
EPSS: 0.000 (9.0th percentile) — read the EPSS interpretation.
Affected products
- Coollabsio Coolify — versions <= 4.0.0-beta.428
Weakness classification (CWE)
References
- https://github.com/coollabsio/coolify/security/advisories/GHSA-927g-56xp-6427 (x_refsource_CONFIRM)