CVE-2006-6345

3 documents3 sources
Severity
7.5HIGH
EPSS
0.9%
top 24.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
SAP Internet Graphics Server
Timeline
PublishedDec 7
Latest updateMay 1

Description

Directory traversal vulnerability in SAP Internet Graphics Service (IGS) 6.40 Patchlevel 16 and earlier, and 7.00 Patchlevel 6 and earlier, allows remote attackers to delete arbitrary files via directory traversal sequences in an HTTP request. NOTE: This information is based upon an initial disclosure. Details will be updated after the grace period has ended. This issue is different from CVE-2006-4133 and CVE-2006-4134.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDsap/internet_graphics_server6.40_patch_16+1

🔴Vulnerability Details

2
GHSA
GHSA-234f-wm58-6qqv: Directory traversal vulnerability in SAP Internet Graphics Service (IGS) 62022-05-01
CVEList
CVE-2006-6345: Directory traversal vulnerability in SAP Internet Graphics Service (IGS) 62006-12-07
CVE-2006-6345 (HIGH CVSS 7.5) | Directory traversal vulnerability i | cvebase.io