Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sap internet graphics server 7.20 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2018-2395
Under certain conditions a malicious user may retrieve information on SAP Internet Graphic Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, overwrite existing image or corrupt other type of files.
Sap Internet Graphics Server 7.49
Sap Internet Graphics Server 7.20
Sap Internet Graphics Server 7.20ext
Sap Internet Graphics Server 7.45
Sap Internet Graphics Server 7.53
7.5
CVSSv2
CVE-2018-2420
SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an malicious user to upload any file (including script files) without proper file format validation.
Sap Internet Graphics Server 7.45
Sap Internet Graphics Server 7.49
Sap Internet Graphics Server 7.53
Sap Internet Graphics Server 7.20
Sap Internet Graphics Server 7.20ext
4.3
CVSSv2
CVE-2021-27620
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method Ups::AddPart() whic...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27622
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CDrawRaster::LoadIm...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27623
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CXmlUtility::CheckL...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27624
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CiXMLIStreamRawBuff...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
1 Github repository
4.3
CVSSv2
CVE-2021-27626
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method CMiniXMLParser::Par...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27627
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method ChartInterpreter::D...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
4.3
CVSSv2
CVE-2021-27625
SAP Internet Graphics Service, versions - 7.20,7.20EXT,7.53,7.20_EX2,7.81, allows an unauthenticated attacker after retrieving an existing system state value can submit a malicious IGS request over a network which due to insufficient input validation in method IgsData::freeMemory...
Sap Netweaver As Internet Graphics Server 7.20
Sap Netweaver As Internet Graphics Server 7.20ext
Sap Netweaver As Internet Graphics Server 7.20ex2
Sap Netweaver As Internet Graphics Server 7.53
Sap Netweaver As Internet Graphics Server 7.81
6.8
CVSSv2
CVE-2018-2442
In SAP BusinessObjects Business Intelligence, versions 4.0, 4.1 and 4.2, while viewing a Web Intelligence report from BI Launchpad, the user session details captured by an HTTP analysis tool could be reused in a HTML page while the user session is still valid.
Sap Businessobjects Business Intelligence 4.2
Sap Businessobjects Business Intelligence 4.1
Sap Businessobjects Business Intelligence 4.0
Sap Internet Graphics Server 7.45
Sap Internet Graphics Server 7.53
Sap Internet Graphics Server 7.20
Sap Internet Graphics Server 7.20ext
Sap Internet Graphics Server 7.49
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3