CVE-2025-53375

Name of the Vulnerable Software and Affected Versions: Dokploy versions prior to 0.23.7

Description: Dokploy is a self-hostable Platform as a Service (PaaS) that simplifies the deployment and management of applications and databases. An authenticated attacker can read any file that the Traefik process user can access, such as /etc/passwd, application source, environment variable files containing credentials and secrets. This may lead to full compromise of other services or lateral movement.

Recommendations: For versions prior to 0.23.7, update to version 0.23.7 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and environment variables to minimize the risk of exploitation.