CVE-2021-42070: Input Validation
First published: Tue Dec 14 2021(Updated: )
When a user opens manipulated Jupiter Tessellation (.jt) file received from untrusted sources in SAP 3D Visual Enterprise Viewer - version 9.0, the application crashes and becomes temporarily unavailable to the user until restart of the application
Credit: cna@sap.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SAP 3D Visual Enterprise Viewer | =9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2021-42070.
What is the severity of CVE-2021-42070?
The severity of CVE-2021-42070 is medium with a severity value of 3.3.
What is the affected software?
The affected software is SAP 3D Visual Enterprise Viewer version 9.0.
How does CVE-2021-42070 manifest?
When a user opens a manipulated Jupiter Tessellation (.jt) file received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9.0, the application crashes and becomes temporarily unavailable.
What is the fix for CVE-2021-42070?
To fix CVE-2021-42070, users should apply the necessary security patch provided by SAP. More information can be found in the SAP Security Note 3121165 and the SAP Security Patch Day - December 2021 wiki page.
- collector/nvd-index
- agent/severity
- agent/author
- agent/type
- agent/event
- vendor/sap
- canonical/sap 3d visual enterprise viewer
- version/sap 3d visual enterprise viewer/9