Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-20732

SAS Web Infrastructure Platform before 9.4M6 allows remote attackers to execute arbitrary code via a Java deserialization variant.

2019-01-17T01:29:00.277

2024-11-21T04:02:03.577

Modified

CVSSv3.0: 9.8 (CRITICAL)

AV:N/AC:L/Au:N/C:P/I:P/A:P

10.0

6.4

Type	Vendor	Product	Version/Range	Vulnerable?
Application	sas	web_infrastructure_platform	< 9.4	Yes
Application	sas	web_infrastructure_platform	9.4	Yes
Application	sas	web_infrastructure_platform	9.4	Yes
Application	sas	web_infrastructure_platform	9.4	Yes
Application	sas	web_infrastructure_platform	9.4	Yes
Application	sas	web_infrastructure_platform	9.4	Yes
Application	sas	web_infrastructure_platform	9.4	Yes
Application	hpe	hp-ux_ipfilter	-	No
Operating System	ibm	aix	-	No
Operating System	linux	linux_kernel	-	No
Operating System	microsoft	windows	-	No
Operating System	oracle	solaris	-	No