Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap netweaver as internet graphics server 7.20ex2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2021-27623
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CXmlUtility::CheckL...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27625
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method IgsData::freeMemory...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27626
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CMiniXMLParser::Par...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27620
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method Ups::AddPart() whic...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27622
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CDrawRaster::LoadIm...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27624
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CiXMLIStreamRawBuff...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
1 Github repository
4.3
CVSSv2
CVE-2021-27627
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method ChartInterpreter::D...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started