A vulnerability was found in coollabsio Coolify up to 4.0.0-beta.473. It has been declared as problematic. The impacted element is the function testConnection of the component S3 Storage Endpoint Validator. Such manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2026-42147. The attack can be launched remotely. No exploit exists.