CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-2437

The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to externally trigger IGS command executions which can lead to: disclosure of information and malicious file insertion or modification.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.2%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

http://www.securityfocus.com/bid/104705
https://launchpad.support.sap.com/#/notes/2644227
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=497256000
http://www.securityfocus.com/bid/104705
https://launchpad.support.sap.com/#/notes/2644227
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=497256000

Products affected by CVE-2018-2437

Sap » Internet Graphics Server » Version: 7.20

cpe:2.3:a:sap:internet_graphics_server:7.20
Sap » Internet Graphics Server » Version: 7.20ext

cpe:2.3:a:sap:internet_graphics_server:7.20ext
Sap » Internet Graphics Server » Version: 7.45

cpe:2.3:a:sap:internet_graphics_server:7.45
Sap » Internet Graphics Server » Version: 7.49

cpe:2.3:a:sap:internet_graphics_server:7.49
Sap » Internet Graphics Server » Version: 7.53

cpe:2.3:a:sap:internet_graphics_server:7.53

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-2437

Products

Pricing

Contact Us