When a user opens manipulated Windows Bitmap (.bmp, 2d.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
References
| Link | Resource |
|---|---|
| https://launchpad.support.sap.com/#/notes/3206271 | Permissions Required Vendor Advisory |
| https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html | Vendor Advisory |
Configurations
History
24 Jun 2022, 18:01
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Sap
Sap 3d Visual Enterprise Viewer |
|
| CPE | cpe:2.3:a:sap:3d_visual_enterprise_viewer:*:*:*:*:*:*:*:* | |
| CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 5.5 |
| References | (MISC) https://launchpad.support.sap.com/#/notes/3206271 - Permissions Required, Vendor Advisory | |
| References | (MISC) https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html - Vendor Advisory |
14 Jun 2022, 20:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-06-14 20:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-32236
Mitre link : CVE-2022-32236
CVE.ORG link : CVE-2022-32236
JSON object : View
Products Affected
sap
- 3d_visual_enterprise_viewer
CWE
CWE-20
Improper Input Validation