CVE-2025-13428

EPSS 0.16%
Veröffentlicht 09.12.2025 06:28:08
Zuletzt bearbeitet 03.02.2026 19:24:32
Quelle f45cbf4e-4146-4068-b7e1-655ffc
CVE-Watchlists
Login
Unerledigt
Login

A vulnerability exists in the SecOps SOAR server. The custom integrations feature allowed an authenticated user with an "IDE role" to achieve Remote Code Execution (RCE) in the server. The flaw stemmed from weak validation of uploaded Python package code. An attacker could upload a package containing a malicious setup.py file, which would execute on the server during the installation process, leading to potential server compromise.

No customer action is required. 


All customers have been automatically upgraded to the fixed version: 6.3.64 or higher.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Google ≫ Security Operations Soar Version < 6.3.64

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.16%	0.374

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	1.2	5.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
f45cbf4e-4146-4068-b7e1-655ffc2c548c	8.6	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:Clear

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://cloud.google.com/support/bulletins#gcp-2025-075

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-13428

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-13428

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-13428

EUVD