JPEG 2000 File Format Crash Vulnerability in SAP 3D Visual Enterprise Viewer

JPEG 2000 File Format Crash Vulnerability in SAP 3D Visual Enterprise Viewer

CVE-2022-35171 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

When a user opens manipulated JPEG 2000 (.jp2, jp2k.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with their CVE relevant information can be found below

Learn more about our User Device Pen Test.