Description
SOPlanning does not enforce authorization for backup functionalities. An unauthenticated attacker can directly query backup-related endpoints and retrieve backup archives containing user databases with usernames and password hashes, as well as the config.csv file, which includes additional sensitive information.

This issue affects SOPlanning version 1.55 and below.
Published: 2026-06-01
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

SOPlanning fails to enforce authorization for backup endpoints, allowing an unauthenticated user to request backup archives from the server. These archives contain user databases with usernames and password hashes, as well as a config.csv file that holds additional sensitive information. The breach exposes credential data and operational secrets, effectively compromising the confidentiality of the entire system.

Affected Systems

The vulnerability impacts the SOPlanning product, specifically all releases version 1.55 and earlier. Users running these affected versions are susceptible to the exploitation described above.

Risk and Exploitability

The CVSS score of 8.8 marks this flaw as high severity, and while there is no EPSS score available, it remains a high-risk issue due to its lack of authorization checks. The vulnerability is not listed in CISA KEV, but its exploitation is straightforward: an attacker only needs network access to the backup endpoints and no credentials. The likely attack vector is remote network-based, as the endpoints are exposed over HTTP/HTTPS and no authentication is required.

Generated by OpenCVE AI on June 1, 2026 at 10:23 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update SOPlanning to version 1.56 or later to remediate the unauthorized backup access flaw.
  • Restrict network access to the backup API endpoints using firewall rules or VPN so that only trusted administrators can reach them.
  • Enable authentication for all backup-related API routes and enforce role-based access controls to prevent unfettered data retrieval.

Generated by OpenCVE AI on June 1, 2026 at 10:23 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 01 Jun 2026 13:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 01 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Soplanning
Soplanning soplanning
Vendors & Products Soplanning
Soplanning soplanning

Mon, 01 Jun 2026 09:15:00 +0000

Type Values Removed Values Added
Description SOPlanning does not enforce authorization for backup functionalities. An unauthenticated attacker can directly query backup-related endpoints and retrieve backup archives containing user databases with usernames and password hashes, as well as the config.csv file, which includes additional sensitive information. This issue affects SOPlanning version 1.55 and below.
Title Missing Authorization in SOPlanning
Weaknesses CWE-862
References
Metrics cvssV4_0

{'score': 8.8, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N'}

Subscriptions

Soplanning Soplanning
cve-icon MITRE

Status: PUBLISHED

Assigner: CERT-PL

Published:

Updated: 2026-06-01T13:07:52.244Z

Reserved: 2026-04-14T09:44:27.613Z

Link: CVE-2026-40543

cve-icon Vulnrichment

Updated: 2026-06-01T13:07:45.779Z

cve-icon NVD

Status : Deferred

Published: 2026-06-01T09:16:17.013

Modified: 2026-06-01T16:37:15.140

Link: CVE-2026-40543

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-01T10:30:26Z

Weaknesses