CVE-2022-41183
published 2022-10-11CVE-2022-41183: Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File (.cur, ico.x3d) file received from untrusted sources in SAP 3D…
medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File (.cur, ico.x3d) file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| drupal | drupal_core | — | — |
| drupal | jquery_ui_datepicker | — | — |
| sap | 3d_visual_enterprise_author | — | — |
| sap_se | sap_3d_visual_enterprise_author | — | — |