Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap netweaver as internet graphics server 7.20ext vulnerabilities and exploits
(subscribe to this query)
5.9
CVSSv3
CVE-2021-27627
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method ChartInterpreter::D...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
5.9
CVSSv3
CVE-2021-27622
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CDrawRaster::LoadIm...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
5.9
CVSSv3
CVE-2021-27623
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CXmlUtility::CheckL...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
5.9
CVSSv3
CVE-2021-27625
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method IgsData::freeMemory...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
5.9
CVSSv3
CVE-2021-27620
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method Ups::AddPart() whic...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
5.9
CVSSv3
CVE-2021-27624
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CiXMLIStreamRawBuff...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
1 Github repository
5.9
CVSSv3
CVE-2021-27626
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CMiniXMLParser::Par...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started