CVE-2018-2393: XEE
First published: Wed Feb 14 2018(Updated: )
Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP internet Graphics Server | =7.20 | |
| SAP internet Graphics Server | =7.20ext | |
| SAP internet Graphics Server | =7.45 | |
| SAP internet Graphics Server | =7.49 | |
| SAP internet Graphics Server | =7.53 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-2393?
The severity of CVE-2018-2393 is high with a severity value of 7.5.
How does CVE-2018-2393 affect SAP Internet Graphics Server?
CVE-2018-2393 affects SAP Internet Graphics Server versions 7.20, 7.20EXT, 7.45, 7.49, and 7.53.
What is the consequence of CVE-2018-2393?
CVE-2018-2393 can cause the SAP Internet Graphics Server (IGS) to become unavailable.
How can I fix CVE-2018-2393?
To fix CVE-2018-2393, apply the security patch provided by SAP.
Are there any additional resources for CVE-2018-2393?
Yes, you can find additional information and security patches for CVE-2018-2393 on the SAP website.
- collector/nvd-index
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/sap
- canonical/sap internet graphics server
- version/sap internet graphics server/7.20
- version/sap internet graphics server/7.20ext
- version/sap internet graphics server/7.45
- version/sap internet graphics server/7.49
- version/sap internet graphics server/7.53