Crash and Unavailability Vulnerability in SAP 3D Visual Enterprise Viewer when Opening Manipulated U3D Files

CVE-2021-27592 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

When a user opens manipulated Universal 3D (.U3D) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.

Learn more about our User Device Pen Test.