CVE-2021-21493
CVE-2021-21493
Vexday Risk Score
13Baixo
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 4.3EPSS 1.4%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
09 mar 2021Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
When a user opens manipulated Graphics Interchange Format (.GIF) format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes temporarily unavailable to the user until restart of the application.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Produtos afetados
SAP SE · SAP 3D Visual Enterprise ViewerQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://launchpad.support.sap.com/#/notes/3027758https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=571343107https://www.zerodayinitiative.com/advisories/ZDI-21-289/https://www.zerodayinitiative.com/advisories/ZDI-21-290/https://www.zerodayinitiative.com/advisories/ZDI-21-291/https://www.zerodayinitiative.com/advisories/ZDI-21-293/https://www.zerodayinitiative.com/advisories/ZDI-21-295/https://www.zerodayinitiative.com/advisories/ZDI-21-296/https://www.zerodayinitiative.com/advisories/ZDI-21-297/https://www.zerodayinitiative.com/advisories/ZDI-21-300/https://www.zerodayinitiative.com/advisories/ZDI-21-301/https://www.zerodayinitiative.com/advisories/ZDI-21-302/