CyberSec.Space Logo
CVEブラウザに戻る

CVE-2018-2393

HIGH
7.5
CVSS Severity Score
EPSS Score0.1130%
EPSS Percentile31.92th
Published2018年2月14日
Last Modified2024年11月21日

Vulnerability Description

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.

Affected Platforms (CPE)

📦
Sap

Internet Graphics Server

= 7.20
📦
Sap

Internet Graphics Server

= 7.20ext
📦
Sap

Internet Graphics Server

= 7.45
📦
Sap

Internet Graphics Server

= 7.49
📦
Sap

Internet Graphics Server

= 7.53

References & Advisories

🔗 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
🔗 https://launchpad.support.sap.com/#/notes/2525222
🔗 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
🔗 https://launchpad.support.sap.com/#/notes/2525222

関連する脆弱性情報

CVE-2008-30139.3

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Ser...

CVE-2014-02639.3

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Go...

CVE-2018-23958.8

Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49...

CVE-2018-23927.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...