Rewterz Threat Alert – APT-C-23 or AridViper Threat Group – Active IOCs
November 10, 2022Rewterz Threat Advisory – CVE-2022-41211 – SAP 3D Visual Enterprise Author and 3D Visual Enterprise Viewer Vulnerability
November 10, 2022Rewterz Threat Alert – APT-C-23 or AridViper Threat Group – Active IOCs
November 10, 2022Rewterz Threat Advisory – CVE-2022-41211 – SAP 3D Visual Enterprise Author and 3D Visual Enterprise Viewer Vulnerability
November 10, 2022Severity
High
Analysis Summary
CVE-2022-41205
SAP GUI for Windows could allow a local authenticated attacker to execute arbitrary code on the system, caused by a code injection flaw. By sending specially-crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
Impact
Code Execution
Indicators Of Compromise
CVE
- CVE-2022-41205
Affected Vendors
SAP
Affected Products
- SAP GUI for Windows 7.70
Remediation
Current SAP customers should refer to SAP Security Advisory for patch information, available from the SAP Web site (login required).