CVE-2025-30017

Name of the Vulnerable Software and Affected Versions: SAP Solution Manager version 7.1

Description: The issue is caused by a missing authorization check, allowing an authenticated attacker to upload a file as a template for solution documentation. This can lead to limited impact on the integrity and availability of the application.

Recommendations: For SAP Solution Manager version 7.1, apply the necessary security patches or updates to include authorization checks for file uploads. As a temporary workaround, consider restricting access to the file upload feature for solution documentation templates until a patch is available.