Vulnerability Description
A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server (versions 6.3.54.0, 6.3.53.2, and all prior versions) allows an authenticated attacker with permissions to import Use Cases to achieve Remote Code Execution (RCE) via uploading a malicious ZIP archive containing path traversal sequences.
Related Weaknesses (CWE)
References
- https://cloud.google.com/chronicle/docs/security-bulletins#GCP-2025-049
- https://cloud.google.com/support/bulletins?gcp-2025-049
FAQ
What is CVE-2025-9918?
CVE-2025-9918 is a documented vulnerability. A Path Traversal vulnerability in the archive extraction component in Google SecOps SOAR Server (versions 6.3.54.0, 6.3.53.2, and all prior versions) allows an authenticated attacker with permissions ...
How severe is CVE-2025-9918?
CVSS scoring is not yet available for CVE-2025-9918. Check NVD for updates.
Is there a patch for CVE-2025-9918?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.