Application Crash Vulnerability in SAP 3D Visual Enterprise Viewer
CVE-2022-32238
5.5MEDIUM
Summary
A vulnerability exists in SAP 3D Visual Enterprise Viewer which allows an attacker to cause the application to crash by opening specially crafted Encapsulated Post Script (.eps) and AI.X3D files. When files from untrusted sources are opened, the application may become temporarily unavailable, requiring a restart to regain functionality.
Affected Version(s)
SAP 3D Visual Enterprise Viewer 9.0
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved