CVE-2016-2536

Published: Feb 22, 2016Modified: May 6, 2026

8.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

Multiple use-after-free vulnerabilities in SAP 3D Visual Enterprise Viewer allow remote attackers to execute arbitrary code via a crafted SketchUp document. NOTE: the primary affected product may be SketchUp.

Affected (2)

Products: Sap: 3d Visual Enterprise Viewer · Google: Sketchup

Sap

1 product

3d Visual Enterprise Viewer

Google

1 product

Sketchup

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Sap 3d Visual Enterprise Viewer	All versions

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Google Sketchup	All versions

Related CWEs

CWE-399

References (10)

http://www.securityfocus.com/bid/83307

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-16-173

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-16-174

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-16-175

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-16-176

Source: cve@mitre.org

http://www.securityfocus.com/bid/83307