Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Internet_graphics_server
(Sap)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 28 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2018-07-10 | CVE-2018-2437 | The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to externally trigger IGS command executions which can lead to: disclosure of information and malicious file insertion or modification. | Internet_graphics_server | 9.1 | ||
2018-02-14 | CVE-2018-2395 | Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files. | Internet_graphics_server | 8.8 | ||
2018-02-14 | CVE-2018-2389 | Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, hiding important information in the log file. | Internet_graphics_server | 5.7 | ||
2018-02-14 | CVE-2018-2387 | A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to obtain information on ports, which is not available to the user otherwise. | Internet_graphics_server | 6.5 | ||
2018-02-14 | CVE-2018-2382 | A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to store graphics in a controlled area and as such gain information from system area, which is not available to the user otherwise. | Internet_graphics_server | 6.5 | ||
2018-05-09 | CVE-2018-2423 | SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, HTTP and RFC listener allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. | Internet_graphics_server | 7.5 | ||
2018-05-09 | CVE-2018-2422 | SAP Internet Graphics Server (IGS) Portwatcher, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. | Internet_graphics_server | 7.5 | ||
2018-05-09 | CVE-2018-2421 | SAP Internet Graphics Server (IGS) Portwatcher, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service. | Internet_graphics_server | 7.5 | ||
2018-05-09 | CVE-2018-2420 | SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file (including script files) without proper file format validation. | Internet_graphics_server | 9.8 | ||
2018-08-14 | CVE-2018-2442 | In SAP BusinessObjects Business Intelligence, versions 4.0, 4.1 and 4.2, while viewing a Web Intelligence report from BI Launchpad, the user session details captured by an HTTP analysis tool could be reused in a HTML page while the user session is still valid. | Businessobjects_business_intelligence, Internet_graphics_server | 8.8 |