CVE-2020-6354

Name of the Vulnerable Software and Affected Versions SAP 3D Visual Enterprise Viewer version 9

Description The issue is caused by improper input validation, allowing a user to open a manipulated SKP file from untrusted sources. This results in the application crashing and becoming temporarily unavailable until the user restarts it. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited.

Recommendations For SAP 3D Visual Enterprise Viewer version 9, as a temporary workaround, consider restricting the opening of SKP files from untrusted sources until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.