CVE-2022-26108

Name of the Vulnerable Software and Affected Versions SAP 3D Visual Enterprise Viewer version 9.0

Description The issue occurs when a user opens a manipulated Picture Exchange (.pcx, 2d.x3d) file received from untrusted sources, causing the application to crash and become temporarily unavailable until it is restarted. This is related to a memory corruption issue during PCX file parsing.

Recommendations For SAP 3D Visual Enterprise Viewer version 9.0, consider avoiding the use of .pcx files from untrusted sources until a patch is available. As a temporary workaround, restrict the opening of .pcx files in the application to minimize the risk of exploitation.