threat
engine
.sh
Back
·
··:··
Home
/
Product
/
sap internet graphics server
Product
sap internet graphics server
28 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2018-2442
all versions
In SAP BusinessObjects Business Intelligence, versions 4.0, 4.1 and 4.2, while viewing a Web Intelligence report from BI Launchpad
8.8
HIGH
CVE-2018-2439
all versions
The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, has insufficient request validation (for example, where t
5.9
MEDIUM
CVE-2018-2438
all versions
The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, has several denial-of-service vulnerabilities that allow
7.5
HIGH
CVE-2018-2437
all versions
The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to externally trigger IGS command exe
9.1
CRITICAL
CVE-2018-2423
all versions
SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, HTTP and RFC listener allows an attacker to prevent legitimat
5.3
MEDIUM
CVE-2018-2422
all versions
SAP Internet Graphics Server (IGS) Portwatcher, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to prevent legitimate users fr
5.3
MEDIUM
CVE-2018-2421
all versions
SAP Internet Graphics Server (IGS) Portwatcher, 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to prevent legitimate users fr
5.3
MEDIUM
CVE-2018-2420
all versions
SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file (including script files
6.5
MEDIUM
CVE-2018-2396
all versions
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20
6.5
MEDIUM
CVE-2018-2395
all versions
Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49
8.8
HIGH
CVE-2018-2394
all versions
Under certain conditions an unauthenticated malicious user can prevent legitimate users from accessing the SAP Internet Graphics S
6.5
MEDIUM
CVE-2018-2393
all versions
Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity
7.5
HIGH
CVE-2018-2392
all versions
Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity
7.5
HIGH
CVE-2018-2391
all versions
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20
6.5
MEDIUM
CVE-2018-2390
all versions
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20
6.5
MEDIUM
CVE-2018-2389
all versions
Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7
5.7
MEDIUM
CVE-2018-2388
all versions
Stored cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.
6.1
MEDIUM
CVE-2018-2387
all versions
A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to obtain infor
6.5
MEDIUM
CVE-2018-2386
all versions
Under certain conditions a malicious user provoking an out of bounds buffer overflow can prevent legitimate users from accessing t
6.5
MEDIUM
CVE-2018-2385
all versions
Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Int
6.5
MEDIUM
CVE-2018-2384
all versions
Under certain conditions a malicious user provoking a Null Pointer dereference can prevent legitimate users from accessing the SAP
6.5
MEDIUM
CVE-2018-2383
all versions
Reflected cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.
6.1
MEDIUM
CVE-2018-2382
all versions
A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to store graphi
6.5
MEDIUM
CVE-2007-3613
all versions
Cross-site scripting (XSS) vulnerability in ADM:GETLOGFILE in SAP Internet Graphics Service (IGS) allows remote attackers to injec
CVE-2006-6346
<= 6.40_patch_15
Unspecified vulnerability in SAP Internet Graphics Service (IGS) 6.40 Patchlevel 15 and earlier, and 7.00 Patchlevel 3 and earlier
CVE-2006-6345
<= 6.40_patch_16
Directory traversal vulnerability in SAP Internet Graphics Service (IGS) 6.40 Patchlevel 16 and earlier, and 7.00 Patchlevel 6 and
CVE-2006-4134
all versions
Unspecified vulnerability related to a "design flaw" in SAP Internet Graphics Service (IGS) 6.40 and earlier and 7.00 and earlier
CVE-2006-4133
all versions
Heap-based buffer overflow in SAP Internet Graphics Service (IGS) 6.40 and earlier, and 7.00 and earlier, allows remote attackers
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin