Primary

Context

SAP Solution Tools Plug-In Authorization Check Vulnerability in ST-PI

Vulnerability

A vulnerability exists in the SAP Solution Tools Plug-In (ST-PI) within a function module that fails to implement proper authorization checks for authenticated users. This oversight allows for the unauthorized disclosure of system information. The vulnerability has a low impact on confidentiality, with no effects on integrity or availability.

Impact

Exploitation of this vulnerability could lead to unauthorized disclosure of system information.

Remediation

Users are advised to consult the SAP Security Notes for guidance on addressing this vulnerability. SAP Security Notes can be accessed through the SAP for Me platform, where users can find the complete list of all SAP Security Notes. It is recommended to implement these security corrections as a priority.

Added: Mar 10, 2026, 5:42 PM

Updated: Mar 10, 2026, 5:42 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

5.2

remediation

0.0

relevance

3.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SAP Solution Tools Plug-In Authorization Check Vulnerability in ST-PI

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating