CVE-2025-48784

Summary

A missing authorization vulnerability in Soar Cloud HRD Human Resource Management System through version 7.3.2025.0408 allows remote attackers to modify system settings without prior authorization.

Affected Software

VendorProductVersion RangeStatus
Soar Cloud System CO., LTD.HRD Human Resource Management System0 <= 7.3.2025.0408affected

Weaknesses

  • CWE-862: CWE-862 Missing Authorization

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References