CVE-2022-41211

CWE-119 — Buffer Overflow CWE-787 — Out-of-bounds Write CWE-416 — Use After Free3 documents3 sources

Severity

7.8HIGH

EPSS

0.2%

top 63.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

SAP SE SAP 3D Visual Enterprise Author SAP SE SAP 3D Visual Enterprise Viewer SAP 3D Visual Enterprise Author +1 more

Timeline

PublishedNov 8

Latest updateNov 9

Description

Due to lack of proper memory management, when a victim opens manipulated file received from untrusted sources in SAP 3D Visual Enterprise Author and SAP 3D Visual Enterprise Viewer, Arbitrary Code Execution can be triggered when payload forces:Re-use of dangling pointer which refers to overwritten space in memory. The accessed memory must be filled with code to execute the attack. Therefore, repeated success is unlikely.Stack-based buffer overflow. Since the memory overwritten is random, based o…

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages4 packages

▶NVDsap/3d_visual_enterprise_author9

▶NVDsap/3d_visual_enterprise_viewer9

▶CVEListV5sap_se/sap_3d_visual_enterprise_author= 9

▶CVEListV5sap_se/sap_3d_visual_enterprise_viewer= 9

🔴Vulnerability Details

GHSA

GHSA-cpwf-rj72-cfwc: Due to lack of proper memory management, when a victim opens manipulated file received from untrusted sources in SAP 3D Visual Enterprise Author and S↗2022-11-09

▶

CVEList

CVE-2022-41211: Due to lack of proper memory management, when a victim opens manipulated file received from untrusted sources in SAP 3D Visual Enterprise Author and S↗2022-11-08

▶