CVE-2018-2394

3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.4%
top 36.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SAP SE SAP Internet Graphics ServerSAP Internet Graphics Server
Timeline
PublishedFeb 14
Latest updateMay 13

Description

Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, services and/or system files.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

CVEListV5sap_se/sap_internet_graphics_server5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-rfmj-2jh5-5gq4: Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 72022-05-13
CVEList
CVE-2018-2394: Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 72018-02-14
CVE-2018-2394 (MEDIUM CVSS 6.5) | Under certain conditions an unauthe | cvebase.io