CVE-2026-27882 | coollabsio coolify up to 4.0.0-beta.460 GitLab Webhook Endpoint timing discrepancy (GHSA-x525-46rq-mr8c)

A vulnerability described as problematic has been identified in coollabsio coolify up to 4.0.0-beta.460. This impacts an unknown function of the component GitLab Webhook Endpoint. Such manipulation leads to observable timing discrepancy.

This vulnerability is traded as CVE-2026-27882. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More