CyberSec.Space Logo
Back to CVE Browser

CVE-2018-2395

HIGH
8.8
CVSS Severity Score
EPSS Score0.0760%
EPSS Percentile39.63th
PublishedFeb 14, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files.

Affected Platforms (CPE)

πŸ“¦
Sap

Internet Graphics Server

= 7.20
πŸ“¦
Sap

Internet Graphics Server

= 7.20ext
πŸ“¦
Sap

Internet Graphics Server

= 7.45
πŸ“¦
Sap

Internet Graphics Server

= 7.49
πŸ“¦
Sap

Internet Graphics Server

= 7.53

References & Advisories

πŸ”— http://www.securityfocus.com/bid/103019
πŸ”— https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
πŸ”— https://launchpad.support.sap.com/#/notes/2525222
πŸ”— http://www.securityfocus.com/bid/103019
πŸ”— https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
πŸ”— https://launchpad.support.sap.com/#/notes/2525222

Related Vulnerabilities

CVE-2008-30139.3

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Ser...

CVE-2014-02639.3

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Go...

CVE-2018-23927.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...

CVE-2018-23937.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...