CVE-2021-33680 MEDIUM

CVE-2021-33680

Vendor Sap Se
Product SAP 3D Visual Enterprise Viewer
Weakness CWE-120
Published July 14, 2021
Last update August 3, 2024

CVSS base score

4.3/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality None
Integrity None

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

What the vulnerability does

01Description

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated CGM file received from untrusted sources which causes buffer overflow and causes the application to crash and becoming temporarily unavailable until the user restarts the application.

Key dates

02Disclosure timeline

July 14, 2021 CVE published
August 3, 2024 Record updated