CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2394
https://notcve.org/view.php?id=CVE-2018-2394
14 Feb 2018 — Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, services and/or system files. Bajo ciertas circunstancias, un usuario malicioso no autenticado puede evitar que usuarios legítimos accedan a SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49 y 7.53, los servicios y/o los archivos del sistema. • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2388
https://notcve.org/view.php?id=CVE-2018-2388
14 Feb 2018 — Stored cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53. Vulnerabilidad de Cross-Site Scripting (XSS) persistente en SAP internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49 y 7.53. • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2396
https://notcve.org/view.php?id=CVE-2018-2396
14 Feb 2018 — Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, using IGS Interpreter service. Bajo ciertas circunstancias, un usuario malicioso puede evitar que usuarios legítimos accedan a SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53 mediante el servicio IGS Interpreter. • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2390
https://notcve.org/view.php?id=CVE-2018-2390
14 Feb 2018 — Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS Chart service. Bajo ciertas circunstancias, un usuario malicioso puede evitar que usuarios legítimos accedan a SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53 mediante el servicio IGS Chart. • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2385
https://notcve.org/view.php?id=CVE-2018-2385
14 Feb 2018 — Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services. Bajo ciertas circunstancias, un usuario malicioso que provoque un cierre inesperado por división entre cero puede evitar que usuarios legítimos accedan a SAP Internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49, 7.53 y sus servicios. • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 • CWE-369: Divide By Zero •
CVSS: 7.5EPSS: 86%CPEs: 5EXPL: 2CVE-2018-2392 – SAP Internet Graphics Server (IGS) XMLCHART XXE
https://notcve.org/view.php?id=CVE-2018-2392
14 Feb 2018 — Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable. Bajo ciertas circunstancias, SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49 y 7.53 no valida XML External Entity correctamente, lo que provoca que SAP Internet Graphics Server (IGS) no esté disponible. • https://packetstorm.news/files/id/180812 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 7.5EPSS: 18%CPEs: 5EXPL: 1CVE-2018-2393 – SAP Internet Graphics Server (IGS) XMLCHART XXE
https://notcve.org/view.php?id=CVE-2018-2393
14 Feb 2018 — Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable. Bajo ciertas circunstancias, SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49 y 7.53 no valida XML External Entity correctamente, lo que provoca que SAP Internet Graphics Server (IGS) no esté disponible. • https://packetstorm.news/files/id/180812 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2382
https://notcve.org/view.php?id=CVE-2018-2382
14 Feb 2018 — A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to store graphics in a controlled area and as such gain information from system area, which is not available to the user otherwise. Una vulnerabilidad en SAP internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49 y 7.53 podría permitir que un usuario malicioso almacene gráficos en un área controlada y, por lo tanto, obtenga información del área del sistema que no estaría disponible al usuario de ot... • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2387
https://notcve.org/view.php?id=CVE-2018-2387
14 Feb 2018 — A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to obtain information on ports, which is not available to the user otherwise. Una vulnerabilidad en SAP internet Graphics Server 7.20, 7.20EXT, 7.45, 7.49 y 7.53 podría permitir que un usuario malicioso obtenga información sobre los puertos, que no estaría disponible para el usuario de otra forma. • https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018 •
CVSS: 8.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-2395
https://notcve.org/view.php?id=CVE-2018-2395
14 Feb 2018 — Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files. Bajo ciertas circunstancias, un usuario malicioso puede recuperar información de SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49 y 7.53, sobrescribir una imagen existente o corromper otros tipos de archivo. • http://www.securityfocus.com/bid/103019 •