CVE-2018-2423

3 documents3 sources

Severity

7.5HIGH

EPSS

0.5%

top 33.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP SE SAP Internet Graphics Server (igs)SAP Internet Graphics Server

Timeline

PublishedMay 9

Latest updateMay 13

Description

SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, HTTP and RFC listener allows an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶NVDsap/internet_graphics_server5 versions+4

▶CVEListV5sap_se/sap_internet_graphics_server_(igs)5 versions+4

🔴Vulnerability Details

GHSA

GHSA-83pq-3pwr-8qh2: SAP Internet Graphics Server (IGS), 7↗2022-05-13

▶

CVEList

CVE-2018-2423: SAP Internet Graphics Server (IGS), 7↗2018-05-09

▶