← Volver a CVEs

CVE-2021-42069

LOW

3.3

Descripcion

When a user opens manipulated Tagged Image File Format (.tif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application

Detalles CVE

Puntuacion CVSS v3.13.3

SeveridadLOW

Vector CVSSCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Vector de ataqueLOCAL

ComplejidadLOW

Privilegios requeridosNONE

Interaccion usuarioREQUIRED

Publicado12/14/2021

Ultima modificacion11/21/2024

Fuentenvd

Avistamientos honeypot0

Productos afectados

sap:3d_visual_enterprise_viewer

Debilidades (CWE)

CWE-787

Referencias

https://launchpad.support.sap.com/#/notes/3121165(cna@sap.com)

https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021(cna@sap.com)

https://www.zerodayinitiative.com/advisories/ZDI-21-1551/(cna@sap.com)

https://launchpad.support.sap.com/#/notes/3121165(af854a3a-2127-422b-91ae-364da2661108)

https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021(af854a3a-2127-422b-91ae-364da2661108)

https://www.zerodayinitiative.com/advisories/ZDI-21-1551/(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.