Crash and Unavailability Vulnerability in SAP 3D Visual Enterprise Viewer 9 when Opening Manipulated IFF Files

Crash and Unavailability Vulnerability in SAP 3D Visual Enterprise Viewer 9 when Opening Manipulated IFF Files

CVE-2021-27586 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

When a user opens manipulated Interchange File Format (.IFF) format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes temporarily unavailable to the user until restart of the application.

Learn more about our User Device Pen Test.