2 matches found
CVE-2022-41198
Due to lack of proper memory management, when a victim opens a manipulated SketchUp .skp, SketchUp.x3d file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow or a...
CVE-2022-41198
SAP 3D Visual Enterprise Viewer (version 9) is affected by a vulnerability in parsing SketchUp files (.skp, SketchUp.x3d) due to improper memory management. The issue can lead to Remote Code Execution when a crafted file forces either a stack-based overflow or a reuse of a dangling pointer to ove...