CVE-2022-41173

Name of the Vulnerable Software and Affected Versions SAP 3D Visual Enterprise Author version 9

Description The issue arises due to improper memory management when a user opens a manipulated AutoCAD (.dxf) file in SAP 3D Visual Enterprise Author. This can cause the application to crash, becoming temporarily unavailable until it is restarted. The crash occurs when the application attempts to process the malicious file received from untrusted sources.

Recommendations For SAP 3D Visual Enterprise Author version 9, consider avoiding the use of untrusted .dxf files until a patch is available. As a temporary workaround, restrict the opening of .dxf files from untrusted sources to minimize the risk of application crash. At the moment, there is no information about a newer version that contains a fix for this vulnerability.