File Access Vulnerability in Dokploy Platform by Dokploy
CVE-2025-53375

4.9MEDIUM

Key Information:

Vendor: Dokploy
Status: Dokploy
Vendor: CVE Published:; 7 July 2025

What is CVE-2025-53375?

An authenticated attacker exploiting this vulnerability in Dokploy can gain unauthorized access to sensitive files, such as application source code, environment variable files, and system files like /etc/passwd. This file access could facilitate a broader attack, allowing lateral movement and potentially compromising other services running on the same instance. The vulnerability is addressed in version 0.23.7.

Affected Version(s)

dokploy < 0.23.7

References

https://github.com/Dokploy/dokploy/security/advisories/GH...

x_refsource_CONFIRM

https://github.com/Dokploy/dokploy/commit/e42f6bc61050cd4...

x_refsource_MISC

CVSS V4

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 7, 2025
Vulnerability Reserved
Jun 27, 2025