CVE-2021-27588

high

Description

When a user opens manipulated HPGL format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes temporarily unavailable to the user until restart of the application.

References

https://www.zerodayinitiative.com/advisories/ZDI-21-292/

https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=571343107

https://launchpad.support.sap.com/#/notes/3027758

Details

Source: Mitre, NVD

Published: 2021-03-09

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00226