CVE-2018-2438

7.5HIGH

Key Information:

Vendor
SAP
Status
SAP Internet Graphics Server (igs)
Vendor
CVE Published:
10 July 2018

Summary

The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, has several denial-of-service vulnerabilities that allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

Affected Version(s)

SAP Internet Graphics Server (IGS) = 7.20 = 7.20

SAP Internet Graphics Server (IGS) = 7.20EXT = 7.20EXT

SAP Internet Graphics Server (IGS) = 7.45 = 7.45

References

http://www.securityfocus.com/bid/104707
vdb-entryx_refsource_BID
https://launchpad.support.sap.com/#/notes/2644238
x_refsource_MISC
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageI...
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.