Vulnerabilities > SAP > Internet Graphics Server > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-07-10 CVE-2018-2437 Unspecified vulnerability in SAP Internet Graphics Server
The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to externally trigger IGS command executions which can lead to: disclosure of information and malicious file insertion or modification.
network
low complexity
sap
critical
9.1
2018-05-09 CVE-2018-2420 Unrestricted Upload of File with Dangerous Type vulnerability in SAP Internet Graphics Server
SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to upload any file (including script files) without proper file format validation.
network
low complexity
sap CWE-434
critical
9.8