Vulnerabilities > CVE-2021-42069 - Out-of-bounds Write vulnerability in SAP 3D Visual Enterprise Viewer 9

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

LOW

local

low complexity

sap

CWE-787

NVD

Published: 2021-12-14

Updated: 2024-11-21

Summary

When a user opens manipulated Tagged Image File Format (.tif) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application

Vulnerable Configurations

Part	Description	Count
Application	Sap SAP 3D Visual Enterprise Viewer 9	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://launchpad.support.sap.com/#/notes/3121165
https://launchpad.support.sap.com/#/notes/3121165
https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021
https://wiki.scn.sap.com/wiki/display/PSR/SAP+Security+Patch+Day+-+December+2021
https://www.zerodayinitiative.com/advisories/ZDI-21-1551/
https://www.zerodayinitiative.com/advisories/ZDI-21-1551/