Updated CISA exploited flaws list includes Gogs vulnerability

Ongoing attacks involving the high-severity path traversal flaw in the open-source Git service Gogs, tracked as CVE-2025-8110, have prompted the issue's inclusion in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, reports Security Affairs.

Federal civilian executive branch agencies have been urged to remediate the weakness, which could be harnessed to abuse Git's symlink functionality and overwrite files outside the repository for remote code execution, by Feb. 2. More than 700 of the nearly 1,400 internet-exposed Gogs instances impacted by CVE-2025-8110 which is a bypass for an earlier flaw in Gogs' PutContentsAPI, tracked as CVE-2024-55947 have already been compromised in attacks, according to Wiz Research, which discovered and reported the vulnerability.

Such intrusions are believed to be automated due to the involvement of dubious repositories with random eight-character names, which were formed immediately after compromise.