Description
Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7 and 2.30.2, the `dotfiles` registry module passed unsanitized user input to shell commands, allowing arbitrary code execution inside a provisioned workspace. Any user who supplied a crafted `dotfiles_uri` value (for example, one containing shell command substitution such as `$(...)`) could achieve command execution in their own workspace. The Create Workspace page's `mode=auto` deep links amplified this into a one-click attack: an attacker could craft a URL that prefilled `param.dotfiles_uri` and silently provisioned a workspace with the attacker-controlled value, with no explicit user confirmation. In versions 2.29.7 and 2.30.2, input validation was added to the dotfiles module to reject URIs and usernames containing special characters, and the unsafe `eval`/`sh -c` usage was removed. This eliminated the command injection at its source.
Published: 2026-07-07
Score: 8.1 High
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability resides in the dotfiles registry module of Coder, where user input is passed directly to shell commands without sanitization. An attacker can supply a crafted dotfiles_uri containing shell command substitution such as $(…); that value is executed inside a provisioned workspace. The result is arbitrary command execution within that workspace, giving the attacker the same privileges as the user who created the workspace and allowing the attacker to run any commands on the workspace host, potentially exposing workspace data or installing malware.

Affected Systems

In Coder versions prior to 2.29.7 for the 2.30.x series and before 2.30.2, any organization that enabled the dotfiles module is vulnerable. Users who have the ability to provision workspaces via the Create Workspace page and who can use the mode=auto deep link are at risk. The vulnerability is mitigated in Coder v2.29.7 and v2.30.2 where input validation rejects special characters and the unsafe eval/sh‑c usage has been removed.

Risk and Exploitability

The CVSS score of 8.1 indicates a high severity, and although no EPSS value is provided, the vulnerability can be exploited through a simple crafted URL that automatically provisions a workspace with a malicious dotfiles_uri. The attack does not require privileged access beyond the ability to create workspaces, and it bypasses explicit user confirmation. The absence of a KEV listing suggests no confirmed widespread exploitation yet, but the auto‑provisioning via a deep link is straightforward. As a result, the risk to any Coder installation that has not yet applied the fixed versions is significant and a timely patch is recommended.

Generated by OpenCVE AI on July 8, 2026 at 09:00 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update Coder to version 2.29.7 or later, or 2.30.2 or later, where the dotfiles module input validation and removal of eval/sh‑c usage have been applied.
  • If upgrading is not immediately possible, restrict the dotfiles_uri parameter to plain URLs without shell metacharacters and disable the dotfiles module for users who do not need it.
  • Configure firewall or network rules to monitor and restrict external access to the workspace provisioning API, and audit workspace creation logs for unexpected auto-generated workspaces.

Generated by OpenCVE AI on July 8, 2026 at 09:00 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
Github GHSA Github GHSA GHSA-m3cr-vc2j-pm27 Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent
History

Tue, 07 Jul 2026 23:45:00 +0000

Type Values Removed Values Added
First Time appeared Coder
Coder coder
Vendors & Products Coder
Coder coder

Tue, 07 Jul 2026 21:45:00 +0000

Type Values Removed Values Added
Description Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7 and 2.30.2, workspace creation via `mode=auto` deep links silently provisioned workspaces with attacker-controlled parameters, requiring no explicit user confirmation. In versions 2.29.7 and 2.30.2, a consent dialog was added that displays all prefilled `param.*` values and blocks creation until the user explicitly clicks Confirm and Create. Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7 and 2.30.2, the `dotfiles` registry module passed unsanitized user input to shell commands, allowing arbitrary code execution inside a provisioned workspace. Any user who supplied a crafted `dotfiles_uri` value (for example, one containing shell command substitution such as `$(...)`) could achieve command execution in their own workspace. The Create Workspace page's `mode=auto` deep links amplified this into a one-click attack: an attacker could craft a URL that prefilled `param.dotfiles_uri` and silently provisioned a workspace with the attacker-controlled value, with no explicit user confirmation. In versions 2.29.7 and 2.30.2, input validation was added to the dotfiles module to reject URIs and usernames containing special characters, and the unsafe `eval`/`sh -c` usage was removed. This eliminated the command injection at its source.

Tue, 07 Jul 2026 20:30:00 +0000

Type Values Removed Values Added
Description Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7 and 2.30.2, workspace creation via `mode=auto` deep links silently provisioned workspaces with attacker-controlled parameters, requiring no explicit user confirmation. In versions 2.29.7 and 2.30.2, a consent dialog was added that displays all prefilled `param.*` values and blocks creation until the user explicitly clicks Confirm and Create.
Title Coder vulnerable to workspace auto-creation via crafted URL parameters without user consent
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 8.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-07-07T21:06:20.237Z

Reserved: 2026-05-06T15:49:25.192Z

Link: CVE-2026-44454

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-07-08T09:15:03Z

Weaknesses
  • CWE-78

    Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')