Path Traversal in Google Cloud Secops Soar
CVE-2025-9918
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server (versions 6.3.54.0, 6.3.53.2, and all prior versions) allows an authenticated attacker with permissions to import Use Cases to achieve Remote C…
Vulnerability class: Path Traversal (Directory Traversal)
EPSS: 0.006 (43.1th percentile) — read the EPSS interpretation.
Affected products
- Google Cloud Secops Soar — versions 0
Weakness classification (CWE)
References
- f45cbf4e-4146-4068-b7e1-655ffc2c548c (vendor-advisory)
- f45cbf4e-4146-4068-b7e1-655ffc2c548c (vendor-advisory)