Primary

Context

SAP SAPCAR Privilege Escalation Vulnerability

Vulnerability

A vulnerability in SAPCAR allows an attacker with high privileges to create a malicious SAR archive. This could be exploited to manipulate critical files and directory permissions without disrupting signature validation, potentially leading to unauthorized privilege escalation. The vulnerability has a high impact on integrity but a low impact on confidentiality and availability.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation.

Remediation

Users are advised to review and implement the SAP Security Note related to this vulnerability, available through the SAP Security Patch Day Bulletin. Instructions for accessing SAP Security Notes can be found on the SAP Security Notes FAQs page.

Added: Jul 8, 2025, 1:20 AM

Updated: Jul 8, 2025, 1:20 AM

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

5.0

exploitability

2.8

remediation

8.3

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.4

impact

5.0

exploitability

2.8

remediation

8.3

relevance

0.2

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP SAPCAR Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

SAPCAR

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating