CyberSec.Space Logo
Back to CVE Browser

CVE-2018-2392

HIGH
7.5
CVSS Severity Score
EPSS Score0.0750%
EPSS Percentile32.93th
PublishedFeb 14, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.

Affected Platforms (CPE)

πŸ“¦
Sap

Internet Graphics Server

= 7.20
πŸ“¦
Sap

Internet Graphics Server

= 7.20ext
πŸ“¦
Sap

Internet Graphics Server

= 7.45
πŸ“¦
Sap

Internet Graphics Server

= 7.49
πŸ“¦
Sap

Internet Graphics Server

= 7.53

References & Advisories

πŸ”— https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
πŸ”— https://launchpad.support.sap.com/#/notes/2525222
πŸ”— https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
πŸ”— https://launchpad.support.sap.com/#/notes/2525222

Related Vulnerabilities

CVE-2008-30139.3

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Ser...

CVE-2014-02639.3

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Go...

CVE-2018-23958.8

Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49...

CVE-2018-23937.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...