Critical

Updated CISA exploited flaws list includes Gogs vulnerability

SCM feed for Latest
Actively Exploited

Overview

The Cybersecurity and Infrastructure Security Agency (CISA) has added a serious vulnerability in the open-source Git service Gogs to its Known Exploited Vulnerabilities catalog. This flaw, identified as CVE-2025-8110, is a path traversal issue that attackers are actively exploiting. Organizations using Gogs should be particularly vigilant, as this vulnerability allows unauthorized access to sensitive files on affected systems. The inclusion in CISA's catalog highlights the urgency for users to address this issue promptly, as it can lead to significant security breaches if not mitigated. Companies relying on Gogs for version control must prioritize patching this vulnerability to protect their data.

Key Takeaways

  • Active Exploitation: This vulnerability is being actively exploited by attackers. Immediate action is recommended.
  • Affected Systems: Gogs, an open-source Git service; systems running affected versions of Gogs.
  • Action Required: Users should update to the latest version of Gogs that addresses CVE-2025-8110.
  • Timeline: Ongoing since discovery

Original Article Summary

Ongoing attacks involving the high-severity path traversal flaw in the open-source Git service Gogs, tracked as CVE-2025-8110, have prompted the issue's inclusion in the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, reports Security Affairs.

Impact

Gogs, an open-source Git service; systems running affected versions of Gogs.

Exploitation Status

This vulnerability is confirmed to be actively exploited by attackers in real-world attacks. Organizations should prioritize patching or implementing workarounds immediately.

Timeline

Ongoing since discovery

Remediation

Users should update to the latest version of Gogs that addresses CVE-2025-8110. Specific patch details were not mentioned, so it is advisable to check the official Gogs repository for updates. Additionally, users should review their server configurations to limit access to sensitive files.

Additional Information

This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.

Related Topics: This incident relates to CVE, Vulnerability.

Related Coverage

Russian trio indicted for allegedly running bulletproof hosting providers that spurred cybercrime

CyberScoop

Three Russian nationals have been indicted for allegedly operating bulletproof hosting services that facilitated cyberattacks across 21 states in the U.S. and other countries. The accused individuals, linked to companies Media Land and ML.Cloud, are said to have contributed to cybercrimes that resulted in losses exceeding $62 million. Bulletproof hosting is a type of service that provides web hosting for malicious activities, allowing attackers to evade law enforcement and launch various cyber operations. This indictment underscores the ongoing challenges law enforcement faces in combating cybercrime, particularly when it involves international actors. The case emphasizes the need for continued cooperation among countries to tackle such threats effectively.

Jul 16, 2026

Phishing Campaign Hides Lua Loader as TrueType Font File

Infosecurity Magazine

A global phishing campaign has been detected that disguises a Lua loader as a TrueType font file to deploy remote access Trojans (RATs) and information stealers. Attackers are using this method to bypass security measures by making the malicious files appear innocuous. This tactic affects users who may inadvertently open these disguised files, leading to potential data breaches or unauthorized access to systems. The presence of such sophisticated phishing techniques raises concerns about the effectiveness of traditional email security measures. Users need to be vigilant about unexpected email attachments, even if they seem harmless, to avoid falling victim to these types of attacks.

Jul 16, 2026

23andMe to pay $18 million in new genetics data breach settlement

BleepingComputer

23andMe, the genetic testing company, has agreed to pay $18 million to settle a lawsuit filed by a coalition of 43 attorneys general. The lawsuit claimed that 23andMe failed to adequately protect its customers' genetic data, putting sensitive information at risk. This settlement comes as part of a broader push for companies to prioritize data security, especially when handling personal genetic information. Customers who used 23andMe's services are particularly affected, as their genetic data could have been exposed. The situation raises significant concerns about privacy and the responsibilities of companies in safeguarding sensitive health information.

Jul 16, 2026

Single Prompt Enables ChatGPT to Execute Full Cyber-Attack Chain, Researchers Claim

Infosecurity Magazine

Researchers have found that OpenAI's GPT-5.5 can execute a full chain of cyber-attacks with just a single prompt. This testing revealed the model's potential use by hackers, raising concerns about its capabilities in offensive cyber operations. The implications are significant, as it suggests that advanced AI tools could simplify the process of launching attacks, making it accessible even to those with limited technical skills. As such AI models become more capable, the cybersecurity community may need to adapt strategies to address these emerging risks. This situation emphasizes the urgent need for organizations to enhance their defenses against increasingly sophisticated cyber threats.

Jul 16, 2026

Two Scattered Spider Hackers Sentenced to Jail in UK

SecurityWeek

Thalha Jubair and Owen Flowers, members of the hacking group Scattered Spider, have been sentenced to prison in the UK for their involvement in a cyberattack against Transport for London (TfL) in 2024. The attack aimed to disrupt TfL's operations, which are vital for public transport in London. The sentencing serves as a reminder of the legal consequences of cybercrime, especially as public infrastructure continues to be targeted by hackers. This incident raises concerns about the security of essential services and the need for stronger defenses against such attacks. The case highlights the ongoing struggle between law enforcement and cybercriminals as authorities work to protect critical infrastructure from future threats.

Jul 16, 2026

AI Data Centers Are Being Built Faster Than They Can Be Secured

SecurityWeek

As artificial intelligence continues to grow, data centers designed to support AI infrastructure are being constructed at a rapid pace. However, these new facilities often lack the security measures needed to protect against emerging threats that traditional data center designs do not account for. This rush to build AI data centers can leave vulnerabilities that attackers might exploit, putting sensitive data and operations at risk. Companies developing AI technologies must prioritize security from the start, rather than trying to retrofit protections after a facility is operational. The implications for businesses and users are significant, as a security breach could lead to data loss or misuse, affecting trust and operations across various sectors.

Jul 16, 2026