5 matches found
EUVD-2025-27633
Malicious code in bioql PyPI...
CVE-2025-9918
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server versions 6.3.54.0, 6.3.53.2, and all prior versions allows an authenticated attacker with permissions to import Use Cases to achieve Remote Code Execution RCE via uploading a malicious ZIP archive...
CVE-2025-9918 Zip Slip in Google SecOps SOAR allows for Remote Code Execution
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server versions 6.3.54.0, 6.3.53.2, and all prior versions allows an authenticated attacker with permissions to import Use Cases to achieve Remote Code Execution RCE via uploading a malicious ZIP archive...
Google SecOps SOAR Server 安全漏洞
Google SecOps SOAR Server is a security platform from Google, Inc USA. A security vulnerability exists in Google SecOps SOAR Server version 6.3.54.0, 6.3.53.2, and all previous versions, which stems from a path traversal issue in the archive extraction component that could lead to remote code...
PT-2025-37160
Name of the Vulnerable Software and Affected Versions: Google SecOps SOAR Server versions prior to 6.3.54.0 Description: A path traversal flaw exists in the archive extraction component of Google SecOps SOAR Server. This allows an authenticated attacker with Use Case import permissions to achieve...