Denial-of-Service Vulnerabilities in SAP Internet Graphics Server
CVE-2018-2438
7.5HIGH
Summary
The SAP Internet Graphics Server versions 7.20, 7.20EXT, 7.45, 7.49, and 7.53 are vulnerable to denial-of-service attacks. An attacker can exploit these vulnerabilities to disrupt service availability, either by crashing the server or flooding it with excessive requests. This behavior prevents legitimate users from accessing the graphics services provided by SAP, leading to significant operational disruptions.
Affected Version(s)
SAP Internet Graphics Server (IGS) = 7.20 = 7.20
SAP Internet Graphics Server (IGS) = 7.20EXT = 7.20EXT
SAP Internet Graphics Server (IGS) = 7.45 = 7.45
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved