External Command Execution Vulnerability in SAP Internet Graphics Service (IGS)

External Command Execution Vulnerability in SAP Internet Graphics Service (IGS)

CVE-2018-2437 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

The SAP Internet Graphics Service (IGS), 7.20, 7.20EXT, 7.45, 7.49, 7.53, allows an attacker to externally trigger IGS command executions which can lead to: disclosure of information and malicious file insertion or modification.

Learn more about our External Network Penetration Testing.