CVE-2018-2438

The SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, has several denial-of-service vulnerabilities that allow an attacker to prevent legitimate users from accessing a service, either by crashing or flooding the service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
sapCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 69%
VendorProductVersion
sapinternet_graphics_server
7.20
sapinternet_graphics_server
7.20ext:ext
sapinternet_graphics_server
7.45
sapinternet_graphics_server
7.49
sapinternet_graphics_server
7.53
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/104707
https://launchpad.support.sap.com/#/notes/2644238
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=497256000
http://www.securityfocus.com/bid/104707
https://launchpad.support.sap.com/#/notes/2644238
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=497256000