CVE-2022-41200

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Due to lack of proper memory management, when a victim opens a manipulated Scalable Vector Graphic (.svg, svg.x3d) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow or a re-use of dangling pointer which refers to overwritten space in memory.

CWE	CWE-119 CWE-787
Vendor	sap se
Product	sap 3d visual enterprise viewer
Published	Oct 11, 2022
Last Updated	Aug 3, 2024

Stay Ahead of the Next One

Get instant alerts for sap se sap 3d visual enterprise viewer

Be the first to know when new unknown vulnerabilities affecting sap se sap 3d visual enterprise viewer are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

SAP SE / SAP 3D Visual Enterprise Viewer

References

NVD ↗ CVE.org ↗ EPSS Data ↗

sap.com: https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html launchpad.support.sap.com: https://launchpad.support.sap.com/#/notes/3245928