Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML External Entity appropriately causing the SAP Internet Graphics Server (IGS) to become unavailable. Date published : 2018-02-14...
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS portwatcher service. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2525222
Under certain conditions a malicious user can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, via IGS Chart service. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2525222
Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, hiding important information in the log file. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2525222
Stored cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2525222
A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to obtain information on ports, which is not available to the user otherwise. Date published :...
Under certain conditions a malicious user provoking an out of bounds buffer overflow can prevent legitimate users from accessing the SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53. Date published : 2018-02-14...
Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services. Date published :...
Under certain conditions a malicious user provoking a Null Pointer dereference can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services. Date published : 2018-02-14...
Reflected cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2525222
A vulnerability in the SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, could allow a malicious user to store graphics in a controlled area and as such gain information from system area, which...
SAP ERP Financials Information System (SAP_APPL 6.00, 6.02, 6.03, 6.04, 6.05, 6.06, 6.16; SAP_FIN 6.17, 6.18, 7.00, 7.20, 7.30 S4CORE 1.00, 1.01, 1.02) does not perform necessary authorization checks for an authenticated user, resulting...
In SAP HANA Extended Application Services, 1.0, an unauthenticated user could test if a given username is valid by evaluating error messages of a specific endpoint. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2589129
In SAP HANA Extended Application Services, 1.0, unauthorized users can read statistical data about deployed applications including resource consumption. Date published : 2018-02-14 https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/ https://launchpad.support.sap.com/#/notes/2589129