Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSapCVELIST:CVE-2022-41180
HistoryOct 11, 2022 - 12:00 a.m.

CVE-2022-41180

2022-10-1100:00:00
CWE-119
CWE-787
sap
www.cve.org
5
memory management
pdf file
remote code execution
sap 3d visual enterprise author - version 9

EPSS

0.002

Percentile

55.3%

JSON

Due to lack of proper memory management, when a victim opens a manipulated Portable Document Format (.pdf, PDFPublishing.dll) file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow or a re-use of dangling pointer which refers to overwritten space in memory.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "SAP 3D Visual Enterprise Author",
    "vendor": "SAP SE",
    "versions": [
      {
        "status": "affected",
        "version": "9"
      }
    ]
  }
]

Related

zdi 4
cnvd 1
nvd 1
prion 1
cve 1
zdi
zdi
SAP 3D Visual Enterprise Author PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-11-03 00:00:00
SAP 3D Visual Enterprise Author PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-11-03 00:00:00
SAP 3D Visual Enterprise Author PDF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
2022-11-03 00:00:00
cnvd
cnvd
SAP 3D Visual Enterprise Author Buffer Overflow Vulnerability (CNVD-2022-69695)
2022-10-13 00:00:00
nvd
nvd
CVE-2022-41180
2022-10-11 21:15:19
prion
prion
Stack overflow
2022-10-11 21:15:00
cve
cve
CVE-2022-41180
2022-10-11 21:15:19

EPSS

0.002

Percentile

55.3%

JSON
Related for CVELIST:CVE-2022-41180
zdi4cnvd1nvd1prion1cve1