CVE-2021-38174
First published: Tue Sep 14 2021(Updated: )
When a user opens manipulated files received from untrusted sources in SAP 3D Visual Enterprise Viewer version - 9, the application crashes and becomes temporarily unavailable to the user until restart of the application.
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP 3D Visual Enterprise Viewer | =9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-38174?
CVE-2021-38174 is a vulnerability in SAP 3D Visual Enterprise Viewer version 9 that occurs when a user opens manipulated files received from untrusted sources, causing the application to crash and become temporarily unavailable until it is restarted.
How does CVE-2021-38174 affect SAP 3D Visual Enterprise Viewer?
CVE-2021-38174 affects SAP 3D Visual Enterprise Viewer version 9 by causing the application to crash and temporarily become unavailable when a user opens manipulated files from untrusted sources.
What is the severity of CVE-2021-38174?
The severity of CVE-2021-38174 is medium with a CVSS score of 6.5.
How can I fix CVE-2021-38174?
To fix CVE-2021-38174, users should update SAP 3D Visual Enterprise Viewer to a version that is not affected by the vulnerability.
Where can I find more information about CVE-2021-38174?
More information about CVE-2021-38174 can be found at the following references: [reference 1](https://launchpad.support.sap.com/#/notes/3087791), [reference 2](https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=585106405).
- collector/nvd-index
- vendor/sap
- canonical/sap 3d visual enterprise viewer
- version/sap 3d visual enterprise viewer/9