← Back to CVEs

CVE-2021-42069

LOW

3.3

Description

When a user opens manipulated Tagged Image File Format (.tif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application

CVE Details

CVSS v3.1 Score3.3

SeverityLOW

CVSS VectorCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Attack VectorLOCAL

ComplexityLOW

Privileges RequiredNONE

User InteractionREQUIRED

Published12/14/2021

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

sap:3d_visual_enterprise_viewer

Weaknesses (CWE)

CWE-787

References

https://launchpad.support.sap.com/#/notes/3121165(cna@sap.com)

https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021(cna@sap.com)

https://www.zerodayinitiative.com/advisories/ZDI-21-1551/(cna@sap.com)

https://launchpad.support.sap.com/#/notes/3121165(af854a3a-2127-422b-91ae-364da2661108)

https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021(af854a3a-2127-422b-91ae-364da2661108)

https://www.zerodayinitiative.com/advisories/ZDI-21-1551/(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.