2025-06-06

Soar Cloud HRD Human Resource Management System - Missing Authorization

ZUSOART ID ZA-2025-09
CVE ID CVE-2025-48784
Vulnerability Type CWE-862: Missing Authorization
CVSS 4.0 Base CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N(8.8)
Description A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to modify system settings without prior authorization.
Vendor Soar Cloud System CO., LTD.
Product
Category Version affected
HRD Human Resource Management System through 7.3.2025.0408
Product Support Contact Soar Cloud for version updates.
Release date 2025/06/06
Credit Yen Chun Shen (YC Shen) of ZUSO ART
top