{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-06T00:57:30.291","vulnerabilities":[{"cve":{"id":"CVE-2026-24322","sourceIdentifier":"cna@sap.com","published":"2026-02-10T04:16:04.307","lastModified":"2026-02-17T15:23:50.653","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"SAP Solution Tools Plug-In (ST-PI) contains a function module that does not perform the necessary authorization checks for authenticated users, allowing sensitive information to be disclosed. This vulnerability has a high impact on confidentiality and does not affect integrity or availability."},{"lang":"es","value":"SAP Solution Tools Plug-In (ST-PI) contiene un módulo de función que no realiza las comprobaciones de autorización necesarias para usuarios autenticados, permitiendo que se divulgue información sensible. Esta vulnerabilidad tiene un alto impacto en la confidencialidad y no afecta a la integridad ni a la disponibilidad."}],"metrics":{"cvssMetricV31":[{"source":"cna@sap.com","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.1,"impactScore":4.0}]},"weaknesses":[{"source":"cna@sap.com","type":"Primary","description":[{"lang":"en","value":"CWE-862"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sap:solution_tools_plug-in:740:*:*:*:*:*:*:*","matchCriteriaId":"3E087FCF-62FE-48A7-80B1-1BEDEA5716D6"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:solution_tools_plug-in:758:*:*:*:*:*:*:*","matchCriteriaId":"F9C9CBFC-453A-4B9E-87B6-466369CE6AD6"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:solution_tools_plug-in:2008_1_700:*:*:*:*:*:*:*","matchCriteriaId":"2DC728B3-F77B-45E8-B7EC-9C78B41FA1E6"},{"vulnerable":true,"criteria":"cpe:2.3:a:sap:solution_tools_plug-in:2008_1_710:*:*:*:*:*:*:*","matchCriteriaId":"4836C482-5A64-4373-BCB4-0185BDF83EAD"}]}]}],"references":[{"url":"https://me.sap.com/notes/3705882","source":"cna@sap.com","tags":["Permissions Required"]},{"url":"https://url.sap/sapsecuritypatchday","source":"cna@sap.com","tags":["Vendor Advisory"]}]}}]}