CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-27655

When a user opens a manipulated Universal 3D (.u3d, 3difr.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.9%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

https://launchpad.support.sap.com/#/notes/3143437
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
https://launchpad.support.sap.com/#/notes/3143437
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

Products affected by CVE-2022-27655

Sap » 3d Visual Enterprise Viewer » Version: 9

cpe:2.3:a:sap:3d_visual_enterprise_viewer:9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-27655

Products

Pricing

Contact Us