102 matches found
CVE-2022-41188
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
CVE-2022-41187
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41187
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41166
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
CVE-2022-41166
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
CVE-2022-39808
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-39808
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
CVE-2022-41166
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
Code injection
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
Code injection
Due to lack of proper memory management, when a victim opens manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until...
CVE-2022-39808
CVE-2022-39808 concerns SAP 3D Visual Enterprise Author v9. It stems from improper memory management while parsing Wavefront OBJ files (ObjTranslator.exe), allowing Remote Code Execution via a payload that triggers a stack-based overflow or reuse of a dangling pointer to overwritten memory space....
CVE-2022-41187
Due to lack of proper memory management, when a victim opens a manipulated Wavefront Object .obj, ObjTranslator.exe file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based...
PT-2022-25688 · Sap · Sap 3D Visual Enterprise Author
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue arises due to improper memory management when handling manipulated Wavefront Object .obj files. If a user opens such a file from an untrusted source, the application may crash a...
PT-2022-25005 · Sap · Sap 3D Visual Enterprise Author
Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Author version 9 Description: The issue is caused by a lack of proper memory management. When a victim opens a manipulated Wavefront Object .obj file received from untrusted sources, it is possible that a Remote Code...
CVE-2022-41187
SAP 3D Visual Enterprise Viewer (version 9) contains a memory-management flaw in OBJ file parsing (ObjTranslator.exe). A crafted .obj file can trigger remote code execution via stack-based overflow or reuse of a dangling pointer. Remediation details are not explicit in the provided CVE data; a PT...
PT-2022-18942 · Bentley · Bentley Microstation Connect
Name of the Vulnerable Software and Affected Versions: Bentley MicroStation CONNECT version 10.16.02.034 Description: This issue allows remote attackers to execute arbitrary code on affected installations. User interaction is required, where the target must visit a malicious page or open a...
com.wavefront:proxy (>=11.0 <=11.0-RC3), com.wavefront:proxy-test (>=999.0 <=9999.0-RC2) +1 more potentially affected by CVE-2020-14326 via org.jboss.resteasy:resteasy-bom (>=3.13.0.Final <=3.13.2.Final)
org.jboss.resteasy:resteasy-bom MAVEN version =3.13.0.Final, =11.0, =999.0, =999.0, =999.7 Source cves: CVE-2020-14326 Source advisory: OSV:GHSA-37G7-8VJJ-PJPJ...
Siemens Solid Edge 缓冲区错误漏洞
Solid Edge is a 3D CAD, parametric feature and synchronous technology solid modeling software. information disclosure vulnerability exists in previous versions of Siemens Solid Edge SE2021MP8. An attacker could exploit the vulnerability to obtain information via specially crafted OBJ files...
com.wavefront:proxy (>=11.0 <=11.0-RC3), com.wavefront:proxy-test (>=999.0 <=9999.0-RC2) +1 more potentially affected by CVE-2021-20293 via org.jboss.resteasy:resteasy-bom (>=3.13.0.Final <=3.13.2.Final)
org.jboss.resteasy:resteasy-bom MAVEN version =3.13.0.Final, =11.0, =999.0, =999.0, =999.7 Source cves: CVE-2021-20293 Source advisory: OSV:GHSA-5H26-C766-G93V...
Command injection
Autodesk Maya 8.0, 8.5, 2008, 2009, and 2010 and Alias Wavefront Maya 6.5 and 7.0 allow remote attackers to execute arbitrary code via a 1 .ma or 2 .mb file that uses the Maya Embedded Language MEL python command or unspecified other MEL commands, related to "Script Nodes."...