CVE-2018-2389

Under certain conditions a malicious user can inject log files of SAP Internet Graphics Server (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, hiding important information in the log file.
References
Configurations

Configuration 1

cpe:2.3:a:sap:internet_graphics_server:7.20:*:*:*:*:*:*:*
cpe:2.3:a:sap:internet_graphics_server:7.20ext:*:*:*:*:*:*:*
cpe:2.3:a:sap:internet_graphics_server:7.45:*:*:*:*:*:*:*
cpe:2.3:a:sap:internet_graphics_server:7.49:*:*:*:*:*:*:*
cpe:2.3:a:sap:internet_graphics_server:7.53:*:*:*:*:*:*:*

Information

Published : 2018-02-14 12:29

Updated : 2020-08-24 05:37


NVD link : CVE-2018-2389

Mitre link : CVE-2018-2389

Products Affected
No products.
CWE
CWE-116

Improper Encoding or Escaping of Output