Over 700 Gogs Instances Compromised by Zero-Day Exploit (CVE-2025-8110)
First seen 10 Dec 2025, 22:48 UTC
•



•84% similarity
•66.5
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
A zero-day vulnerability in Gogs, a self-hosted Git service, is being actively exploited, affecting over 700 instances. Discovered by Wiz Research during a malware investigation, the vulnerability allows authenticated users to execute remote code by overwriting files outside the repository. As of December 1, 2025, a patch has not yet been released.
ThreatCluster AI