Information Disclosure and File Manipulation in SAP Internet Graphic Server
CVE-2018-2395
8.8HIGH
What is CVE-2018-2395?
A vulnerability exists in SAP Internet Graphic Server that allows a malicious user to retrieve sensitive information and overwrite existing images or corrupt other file types. This can occur under specific conditions, potentially leading to unauthorized access and the manipulation of critical files within the affected systems.
Affected Version(s)
SAP Internet Graphics Server 7.20
SAP Internet Graphics Server 7.20EXT
SAP Internet Graphics Server 7.45