Back to search
CVE-2025-48780
Published: Jun 6, 2025
Modified: Jun 6, 2025
PUBLISHED
Description
A deserialization of untrusted data vulnerability in the download file function of Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to execute arbitrary system commands via a crafted serialized object.
| Vendor | Product | Versions |
|---|---|---|
Soar Cloud System CO., LTD. | HRD Human Resource Management System | affected 0 - <= 7.3.2025.0408 |
Weaknesses (CWE)
References
https://zuso.ai/advisory/za-2025-05
third-party-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now