{"dataType":"CVE_RECORD","dataVersion":"5.2","cveMetadata":{"cveId":"CVE-2025-64423","assignerOrgId":"a0819718-46f1-4df5-94e2-005712e83aaa","state":"PUBLISHED","assignerShortName":"GitHub_M","dateReserved":"2025-11-03T22:12:51.364Z","datePublished":"2026-01-05T20:41:37.443Z","dateUpdated":"2026-01-05T21:48:48.774Z"},"containers":{"cna":{"title":"Coolify has a Privilege Escalation - low privileged users can see and use admin invitation links","problemTypes":[{"descriptions":[{"cweId":"CWE-287","lang":"en","description":"CWE-287: Improper Authentication","type":"CWE"}]}],"metrics":[{"cvssV4_0":{"attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"LOW","userInteraction":"NONE","vulnConfidentialityImpact":"HIGH","vulnIntegrityImpact":"HIGH","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"NONE","baseScore":7.7,"baseSeverity":"HIGH","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","version":"4.0"}}],"references":[{"name":"https://github.com/coollabsio/coolify/security/advisories/GHSA-4fqm-797g-7m6j","tags":["x_refsource_CONFIRM"],"url":"https://github.com/coollabsio/coolify/security/advisories/GHSA-4fqm-797g-7m6j"}],"affected":[{"vendor":"coollabsio","product":"coolify","versions":[{"version":"<= 4.0.0-beta.434","status":"affected"}]}],"providerMetadata":{"orgId":"a0819718-46f1-4df5-94e2-005712e83aaa","shortName":"GitHub_M","dateUpdated":"2026-01-05T20:41:37.443Z"},"descriptions":[{"lang":"en","value":"Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. In Coolify versions up to and including v4.0.0-beta.434, a low privileged user (member) can see and use invitation links sent to an administrator. When they use the link before the legitimate recipient does, they are able to log in as an administrator, meaning they have successfully escalated their privileges. As of time of publication, it is unclear if a patch is available."}],"source":{"advisory":"GHSA-4fqm-797g-7m6j","discovery":"UNKNOWN"}},"adp":[{"references":[{"url":"https://github.com/coollabsio/coolify/security/advisories/GHSA-4fqm-797g-7m6j","tags":["exploit"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2026-01-05T21:08:10.597936Z","id":"CVE-2025-64423","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2026-01-05T21:48:48.774Z"}}]}}