CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-41178

Due to lack of proper memory management, when a victim opens manipulated Iges Part and Assembly (.igs, .iges, CoreCadTranslator.exe) file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.3%

CVSS Severity

CVSS v3 Score 5.5

References

https://launchpad.support.sap.com/#/notes/3245929
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html
https://launchpad.support.sap.com/#/notes/3245929
https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html

Products affected by CVE-2022-41178

Sap » 3d Visual Enterprise Author » Version: 9.0

cpe:2.3:a:sap:3d_visual_enterprise_author:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-41178

Products

Pricing

Contact Us