CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2018-2392

HIGH
7.5
CVSS Severity Score
EPSS Score0.0750%
EPSS Percentile32.93th
Published2018年2月14日
Last Modified2024年11月21日

Vulnerability Description

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.

Affected Platforms (CPE)

📦
Sap

Internet Graphics Server

= 7.20
📦
Sap

Internet Graphics Server

= 7.20ext
📦
Sap

Internet Graphics Server

= 7.45
📦
Sap

Internet Graphics Server

= 7.49
📦
Sap

Internet Graphics Server

= 7.53

References & Advisories

🔗 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
🔗 https://launchpad.support.sap.com/#/notes/2525222
🔗 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
🔗 https://launchpad.support.sap.com/#/notes/2525222

相關漏洞威脅

CVE-2008-30139.3

gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Ser...

CVE-2014-02639.3

The Direct2D implementation in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Go...

CVE-2018-23958.8

Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49...

CVE-2018-23937.5

Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity...