Attackers are exploiting a zero-day vulnerability (CVE-2025-8110) in Gogs, a self-hosted Git service, leading to widespread infections. Researchers advise immediate mitigation measures while a fix is developed, as active exploitation continues. #Gogs #CVE20258110
Keypoints
- The zero-day vulnerability in Gogs allows remote code execution through symbolic link abuse.
- Over 700 Gogs instances have been infected, with the attacks ongoing worldwide.
- The bug bypasses a previous patch, making it a significant security threat for aging Gogs versions.
- Attackers leverage an API vulnerability to overwrite sensitive files outside repositories, such as .git/config.
- Security experts recommend disabling open-registration and restricting internet exposure to prevent further attacks.
Read More: https://www.theregister.com/2025/12/10/gogs_0day_under_active_exploitation/