CVE-2021-33681

Name of the Vulnerable Software and Affected Versions: SAP 3D Visual Enterprise Viewer version 9

Description: The issue allows a user to open a manipulated CGM file from untrusted sources, causing an out of bounds write. This results in the application crashing and becoming temporarily unavailable until the user restarts it.

Recommendations: For SAP 3D Visual Enterprise Viewer version 9, avoid opening CGM files from untrusted sources until a fix is available. As a temporary workaround, consider implementing additional validation checks on CGM files before opening them to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.