CVE-2025-64422 | coollabsio coolify 4.0.0-beta.434 Header /login X-Forwarded-For allocation of resources (GHSA-688j-rm43-5r8x)

Inserito da Angelo Barbosa | Gen 6, 2026 | CVE

A vulnerability classified as problematic has been found in coollabsio coolify 4.0.0-beta.434. This affects an unknown function of the file /login of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to allocation of resources.

This vulnerability is documented as CVE-2025-64422. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-64422 | coollabsio coolify 4.0.0-beta.434 Header /login X-Forwarded-For allocation of resources (GHSA-688j-rm43-5r8x)

Post correlati

CVE-2025-23258 | NVIDIA DOCA with collectx-dpeserver permission assignment

CVE-2023-47064 | Adobe Experience Manager up to 6.5.18 cross site scripting (apsb23-72)

CVE-2025-36746 | SolarEdge Monitoring platform cross site scripting

CVE-2024-8040 | Dassault Systèmes 3DSwymer authorization