CVE-2018-2385

MEDIUM

SAP Internet Graphics Server - Divide By Zero

Title source: rule

Description

Under certain conditions a malicious user provoking a divide by zero crash can prevent legitimate users from accessing the SAP Internet Graphics Server, 7.20, 7.20EXT, 7.45, 7.49, 7.53, and its services.

References (2)

Scores

CVSS v3 6.5
EPSS 0.0037
EPSS Percentile 58.5%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Classification

CWE
CWE-369
Status published

Affected Products (5)

sap/internet_graphics_server
sap/internet_graphics_server
sap/internet_graphics_server
sap/internet_graphics_server
sap/internet_graphics_server

Timeline

Published Feb 14, 2018
Tracked Since Feb 18, 2026