PT-2018-15522 · Sap · Sap Internet Graphics Server

Published

2018-02-14

Updated

2019-10-03

CVE-2018-2390

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SAP Internet Graphics Server (IGS) versions 7.20, 7.20EXT, 7.45, 7.49, 7.53

Description The issue allows a malicious user to prevent legitimate users from accessing the SAP Internet Graphics Server (IGS) via the IGS Chart service under certain conditions.

Recommendations For SAP Internet Graphics Server (IGS) version 7.20, update to a version that includes the fix for this issue. For SAP Internet Graphics Server (IGS) version 7.20EXT, update to a version that includes the fix for this issue. For SAP Internet Graphics Server (IGS) version 7.45, update to a version that includes the fix for this issue. For SAP Internet Graphics Server (IGS) version 7.49, update to a version that includes the fix for this issue. For SAP Internet Graphics Server (IGS) version 7.53, update to a version that includes the fix for this issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2018-2390

Affected Products

Sap Internet Graphics Server

PT-2018-15522 · Sap · Sap Internet Graphics Server

CVE-2018-2390

Related Identifiers

Affected Products

References · 4