Description

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated GIF file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.

Related CPE's

a

sap

3d_visual_enterprise_viewer

9

Vulnerable

References

https://launchpad.support.sap.com/#/notes/3059999

Vendor Advisory

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=578125999

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-06-09T14:15:09.873

4 years ago

Last modified

2021-06-11T18:50:30.793

4 years ago