CVE-2018-2383
MEDIUMSAP Internet Graphics Server 7.20 7.20EXT 7.45 7.49 7.53 - Reflected Cross-Site Scripting
Title source: llmDescription
Reflected cross-site scripting vulnerability in SAP internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53.
References (2)
Core 2
Core References
Permissions Required, Vendor Advisory x_refsource_confirm
https://launchpad.support.sap.com/#/notes/2525222
Vendor Advisory x_refsource_confirm
https://blogs.sap.com/2018/02/13/sap-security-patch-day-february-2018/
Scores
CVSS v3
6.1
EPSS
0.0026
EPSS Percentile
49.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (5)
sap/internet_graphics_server
7.20
sap/internet_graphics_server
7.20ext
sap/internet_graphics_server
7.45
sap/internet_graphics_server
7.49
sap/internet_graphics_server
7.53
Published
Feb 14, 2018
Tracked Since
Feb 18, 2026