Path Traversal in Google Cloud Secops Soar

CVE-2025-9918

A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server (versions 6.3.54.0, 6.3.53.2, and all prior versions) allows an authenticated attacker with permissions to import Use Cases to achieve Remote C…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.006 (43.1th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

References