CVE-2021-27587

March 25, 2021

When a user opens manipulated Jupiter Tessellation (.JT) format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes temporarily unavailable to the user until restart of the application.

Summary:

When a user opens manipulated Jupiter Tessellation (.JT) format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes temporarily unavailable to the user until restart of the application.

Reference Links(if available):

  • https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=571343107
  • https://launchpad.support.sap.com/#/notes/3027758
  • https://www.zerodayinitiative.com/advisories/ZDI-21-310/
  • https://www.zerodayinitiative.com/advisories/ZDI-21-312/

  • CVSS Score (if available)

    v2: / MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P

    v3: / MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    alerts

    Active Exploitation of Vulnerabilities in Cisco Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) Products.

    April 25, 2024
    image

    CACTUS Ransomware Victim: https://www[.]ghimli[.]com /

    April 25, 2024
    hkcert

    Cisco Products Multiple Vulnerabilities

    April 25, 2024
    HIBP Banner 1

    T2 – 94,584 breached accounts

    April 25, 2024
    CISA Logo

    CISA: CISA Releases Three Industrial Control Systems Advisories

    April 25, 2024