SAP

Internet Graphics Server

28 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2018-2395

  • EPSS 0.6%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:44

Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files.

6.5

CVE-2018-2394

  • EPSS 0.44%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:44

Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, services and/or system files.

7.5

CVE-2018-2393

  • EPSS 17.95%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:44

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.

7.5

CVE-2018-2392

  • EPSS 86.1%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:44

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.

6.5

CVE-2018-2390

  • EPSS 0.37%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:43

Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS Chart service.

5.7

CVE-2018-2389

  • EPSS 0.2%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:43

Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, hiding important information in the log file.

6.1

CVE-2018-2388

  • EPSS 0.26%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:43

Stored cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.

6.5

CVE-2018-2387

  • EPSS 0.26%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:43

A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to obtain information on ports, which is not available to the user otherwise.

6.5

CVE-2018-2386

  • EPSS 0.45%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:43

Under certain conditions a malicious user provoking an out of bounds buffer overflow can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53.

6.5

CVE-2018-2385

  • EPSS 0.37%
  • Published 14.02.2018 12:29:01
  • Last modified 21.11.2024 04:03:43

Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services.