RCE via cursor file stack overflow in SAP 3D Visual Enterprise Author v9
CVE-2022-41184 Published on October 11, 2022
Due to lack of proper memory management, when a victim opens a manipulated Windows Cursor File (.cur, ico.x3d) file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible that a Remote Code Execution can be triggered when payload forces a stack-based overflow or a re-use of dangling pointer which refers to overwritten space in memory.
Weakness Types
What is a Buffer Overflow Vulnerability?
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
CVE-2022-41184 has been classified to as a Buffer Overflow vulnerability or weakness.
What is a Memory Corruption Vulnerability?
The software writes data past the end, or before the beginning, of the intended buffer. Typically, this can result in corruption of data, a crash, or code execution. The software may modify an index or perform pointer arithmetic that references a memory location that is outside of the boundaries of the buffer. A subsequent write operation then produces undefined or unexpected results.
CVE-2022-41184 has been classified to as a Memory Corruption vulnerability or weakness.
Products Associated with CVE-2022-41184
Want to know whenever a new CVE is published for SAP 3d Visual Enterprise Author? stack.watch will email you.
Affected Versions
SAP SE SAP 3D Visual Enterprise Author Version 9 is affected by CVE-2022-41184Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.