ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers
Summary
A critical remote code execution (RCE) vulnerability, identified as CVE-2025-0520, has been discovered in ShowDoc, a popular document management service. This flaw allows for unrestricted file uploads due to improper validation and is reportedly being actively exploited in the wild on unpatched servers. The vulnerability has a high CVSS score of 9.4.
IFF Assessment
The active exploitation of a critical RCE vulnerability in a widely used tool poses a direct threat to organizations relying on it.
Severity
The CVSS score of 9.4 reflects the high severity of the vulnerability, likely due to its remote code execution capability and ease of exploitation through unrestricted file uploads.
Defender Context
Organizations using ShowDoc should prioritize patching this vulnerability immediately to prevent exploitation. Defenders need to monitor for indicators of compromise related to unauthorized file uploads and potential RCE attempts. This highlights the ongoing risk posed by unpatched software, especially for services with active exploitation.