2 matches found
CVE-2022-41196
Due to lack of proper memory management, when a victim opens a manipulated VRML Worlds .wrl, vrml.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow or a...
CVE-2022-41196
SAP 3D Visual Enterprise Viewer 9 is affected by a WRL/VRML.X3D parsing vulnerability caused by improper memory management, enabling Remote Code Execution (RCE) when a manipulated file is opened. Public details (ZDI advisories) state exploitation requires user interaction (e.g., opening a malicio...