CNNVD-202509-1678 Information

CNNVD ID

CNNVD-202509-1678

Related CVE

CVE-2025-9918

• CNNVD Published: 2025-09-11

Description (Chinese)

Google SecOps SOAR Server是美国谷歌（Google）公司的一款安全平台。 Google SecOps SOAR Server 6.3.54.0版本、6.3.53.2版本及所有之前版本存在安全漏洞，该漏洞源于存档提取组件存在路径遍历问题，可能导致远程代码执行。

Description (English)

Google Security SOAR Server is a security platform for Google. Google SecOps SOAR Server version 6.3.54.0, version 6.3.5.3.3.2 and all previous versions have a security loophole, which stems from the history of the archive extraction component, which may lead to remote code execution.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

GoPlace!

Published

2025-09-11

Last Modified

2026-02-24

References

https://cloud.google.com/chronicle/docs/security-bulletins#GCP-2025-049 https://cloud.google.com/support/bulletins?gcp-2025-049

Patch

https://cloud.google.com/chronicle/docs/security-bulletins?hl=zh-cn#GCP-2025-049