Memory Corruption Vulnerability in SAP Internet Graphics Service
CVE-2021-27622
5.9MEDIUM
What is CVE-2021-27622?
The vulnerability in the SAP Internet Graphics Service affects multiple versions, enabling unauthenticated attackers to exploit insufficient input validation. By sending a malicious IGS request after retrieving an existing system state value, attackers can trigger an internal memory corruption, leading to a system crash. During this attack, no data can be accessed or altered, rendering the service unavailable and disrupting normal operations.
Affected Version(s)
SAP Internet Graphics Service < 7.20 < 7.20
SAP Internet Graphics Service < 7.20EXT < 7.20EXT
SAP Internet Graphics Service < 7.53 < 7.53