CVE-2018-2395
N/A
N/A
Summary
Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| SAP SE | SAP Internet Graphics Server | 7.20 | affected |
| SAP SE | SAP Internet Graphics Server | 7.20EXT | affected |
| SAP SE | SAP Internet Graphics Server | 7.45 | affected |
| SAP SE | SAP Internet Graphics Server | 7.49 | affected |
| SAP SE | SAP Internet Graphics Server | 7.53 | affected |
Weaknesses
- Unrestricted File Upload
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/103019
- https://launchpad.support.sap.com/#/notes/2525222
- https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
References
- http://www.securityfocus.com/bid/103019
- https://launchpad.support.sap.com/#/notes/2525222
- https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.