Denial of Service Vulnerability in SAP Internet Graphics Server
CVE-2018-2423

5.3MEDIUM

Key Information:

Vendor
SAP
Status
SAP Internet Graphics Server (igs)
Vendor
CVE Published:
9 May 2018

Summary

The SAP Internet Graphics Server (IGS) contains a vulnerability that allows an attacker to disrupt access for legitimate users. This flaw can be exploited by launching a denial of service attack via HTTP or RFC listeners, resulting in service crashes or overloads and preventing users from accessing essential services. Addressing this vulnerability is crucial to maintaining service availability and ensuring the integrity of user interactions with the affected systems.

Affected Version(s)

SAP Internet Graphics Server (IGS) 7.20

SAP Internet Graphics Server (IGS) 7.20EXT

SAP Internet Graphics Server (IGS) 7.45

References

https://blogs.sap.com/2018/05/08/sap-security-patch-day-m...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/104109
vdb-entryx_refsource_BID
https://launchpad.support.sap.com/#/notes/2620744
x_refsource_MISC

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.