Input validation

2020-09-0913:15:00

PRIOn knowledge base

www.prio-n.com

4.5 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.6%

JSON

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated U3D file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation.

CPENameOperatorVersion
3d_visual_enterprise_viewereq9

CPE	Name	Operator	Version
	3d_visual_enterprise_viewer	eq	9

References

launchpad.support.sap.com/

wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=557449700

www.zerodayinitiative.com/advisories/ZDI-20-1152/