2 matches found
CVE-2022-41183
Due to lack of proper memory management, when a victim opens manipulated Windows Cursor File .cur, ico.x3d file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart...
CVE-2022-41183
SAP 3D Visual Enterprise Author (v9) contains a vulnerability in the CUR file parsing code leading to memory corruption. The ZDI advisory describes an out-of-bounds read in CUR parsing that can be triggered by opening a malicious CUR file, enabling remote code execution in the context of the affe...