Remote Code Execution Vulnerability in DocsGPT by Arc53
CVE-2025-0868

9.3CRITICAL

Key Information:

Vendor
Arc53
Status
Docsgpt
Vendor
CVE Published:
20 February 2025

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 18%

Summary

A security flaw exists in DocsGPT that allows unauthorized access leading to Remote Code Execution. An attacker can exploit this vulnerability through the improper parsing of JSON data using the eval() function. By sending arbitrary Python code to the /api/remote endpoint, an attacker can execute unauthorized commands on servers running affected versions of DocsGPT, ranging from 0.8.1 to 0.12.0. It is essential for users to implement necessary security measures to mitigate potential risks.

Affected Version(s)

DocsGPT 0.8.1 <= 0.12.0

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

PoC_CVE-2025-0868
Created by shreyas-malhotra

References

https://cert.pl/en/posts/2025/02/CVE-2025-0868/
third-party-advisory
https://cert.pl/posts/2025/02/CVE-2025-0868/
third-party-advisory
https://github.com/arc53/DocsGPT
product

EPSS Score

18% chance of being exploited in the next 30 days.

CVSS V4

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Eryk Winiarz
.