What the vulnerability does

01Description

Due to lack of proper memory management, when a victim opens manipulated Enhanced Metafile (.emf, emf.x3d) file received from untrusted sources in SAP 3D Visual Enterprise Author - version 9, it is possible for the application to crash and becomes temporarily unavailable to the user until restart of the application.

Key dates

02Disclosure timeline

October 11, 2022 CVE published
August 3, 2024 Record updated