Description

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated JT file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.

Related CPE's

a

sap

3d_visual_enterprise_viewer

9

Vulnerable

References

https://launchpad.support.sap.com/#/notes/3059999

Permissions RequiredVendor Advisory

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=578125999

Vendor Advisory

https://launchpad.support.sap.com/#/notes/3059999

Permissions RequiredVendor Advisory

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=578125999

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2021-06-09T12:15:09.520Z

4 years ago

Last modified

2024-11-21T04:58:21.193Z

1 year ago