Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-88939
HistoryOct 13, 2022 - 12:00 a.m.

SAP 3D Visual Enterprise Author .emf buffer overflow vulnerability

2022-10-1300:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
sap germany
desktop application
2d assets
3d assets
animation
video
audio
version 9
buffer overflow
memory management
attacker
crafted files
stack-based overflow
remote code execution
dangling pointer
cnvd

EPSS

0.002

Percentile

52.8%

JSON

SAP 3D Visual Enterprise Author is a desktop application from SAP Germany for managing 2D, 3D, animation, video and audio assets. version 9 of SAP 3D Visual Enterprise Author is vulnerable to a buffer overflow vulnerability that stems from a lack of proper memory management and could be exploited by an attacker via specially crafted files (.emf, emf.x3d) to force a stack-based overflow at payload or to reuse remote code execution when pointing to a dangling pointer to an overwritten space in memory.

Related

cvelist 1
prion 1
zdi 2
nvd 1
cve 1
cvelist
cvelist
CVE-2022-41175
2022-10-11 00:00:00
prion
prion
Stack overflow
2022-10-11 21:15:00
zdi
zdi
SAP 3D Visual Enterprise Author EMF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-11-03 00:00:00
SAP 3D Visual Enterprise Author EMF File Parsing Uninitialized Pointer Remote Code Execution Vulnerability
2022-11-03 00:00:00
nvd
nvd
CVE-2022-41175
2022-10-11 21:15:18
cve
cve
CVE-2022-41175
2022-10-11 21:15:18

EPSS

0.002

Percentile

52.8%

JSON
Related for CNVD-2022-88939
cvelist1prion1zdi2nvd1cve1