| Summary: Xerox assessed DocuShare for Apache Tomcat CVE-2025-55752 and determined that standard DocuShare deployments are not affected because the required RewriteValve and PUT-enabled upload path are not present. |
Applies To
| DocuShare Release | Guidance |
| DocuShare 7.5 | No action required for the shipped configuration. |
| DocuShare 7.6 | No action required for the shipped configuration. |
| DocuShare 7.7 | No action required for the shipped configuration. |
| DocuShare 8.0 | No action required for the shipped configuration. |
Overview
CVE-2025-55752 is an Apache Tomcat relative path traversal vulnerability tied to rewrite rules that manipulate query parameters and, in more severe cases, PUT-enabled upload behavior.
Xerox DocuShare reviewed the standard DocuShare deployment and found no rewrite.config files, no RewriteValve configuration, and no web.xml mappings that enable PUT in the way required for the exploit path.
What the Vulnerability Requires
The vulnerability depends on a combination of Tomcat features that are not present in the standard DocuShare deployment.
- Tomcat in an affected version range prior to Apache Tomcat 9.0.109.
- Rewrite rules that rewrite query parameters into the URL path.
- A request path where security constraints can be bypassed through that rewrite logic.
- PUT enabled in a way that allows malicious content upload for the remote-code-execution scenario.
DocuShare Assessment
| Assessment Item | Finding |
| RewriteValve or rewrite.config in standard DocuShare deployment | Not found |
| PUT mappings required for the exploit path | Not found in the reviewed configuration |
| Customer guidance | Standard DocuShare deployments are not affected |
| Important: If your organization has introduced custom RewriteValve rules or custom PUT handling outside the standard Xerox configuration, review those changes carefully. |
What You Should Do
- No action is required for a standard Xerox DocuShare deployment.
- If you maintain custom rewrite behavior or custom PUT handling, review those changes carefully.