Crash and Unavailability Vulnerability in SAP 3D Visual Enterprise Viewer 9.0 when Opening Manipulated Photoshop Documents

Crash and Unavailability Vulnerability in SAP 3D Visual Enterprise Viewer 9.0 when Opening Manipulated Photoshop Documents

CVE-2022-27654 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

When a user opens a manipulated Photoshop Document (.psd, 2d.x3d) received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application.

Learn more about our User Device Pen Test.