VDB

CVE-2022-35171

CVE-2022-35171 PUBLISHED CVSS 5.5 MEDIUM

When a user opens manipulated JPEG 2000 (.jp2, jp2k.x3d) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application. The file format details along with their CVE relevant information can be found below

EPSS 0.14% · 34.3th percentile

Risk Scores

CVSS 3.1
5.5
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
0.14%
34.3th percentile

Affected Products

VendorProductVersions
sap3d_visual_enterprise_viewer9
SAP SESAP 3D Visual Enterprise Viewer9.0

Timeline

  • Jul 12, 2022 CVE Published
  • Jul 13, 2022 EPSS Score
  • Aug 30, 2022 EPSS Score
  • Oct 16, 2022 EPSS Score
  • Dec 2, 2022 EPSS Score
  • Jan 18, 2023 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 23, 2023 EPSS Score
  • Jun 9, 2023 EPSS Score
  • Jul 26, 2023 EPSS Score
  • Sep 11, 2023 EPSS Score
  • Oct 28, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›