CyberSec.Space Logo
CVEブラウザに戻る

CVE-2018-2395

HIGH
8.8
CVSS Severity Score
EPSS Score0.0760%
EPSS Percentile39.63th
Published2018年2月14日
Last Modified2024年11月21日

Vulnerability Description

Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files.

Affected Platforms (CPE)

📦
Sap

Internet Graphics Server

= 7.20
📦
Sap

Internet Graphics Server

= 7.20ext
📦
Sap

Internet Graphics Server

= 7.45
📦
Sap

Internet Graphics Server

= 7.49
📦
Sap

Internet Graphics Server

= 7.53

References & Advisories

🔗 http://www.securityfocus.com/bid/103019
🔗 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
🔗 https://launchpad.support.sap.com/#/notes/2525222
🔗 http://www.securityfocus.com/bid/103019
🔗 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
🔗 https://launchpad.support.sap.com/#/notes/2525222

関連する脆弱性情報

CVE-2008-30139.3

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Ser...

CVE-2014-02639.3

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Go...

CVE-2018-23927.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...

CVE-2018-23937.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...