When a user opens manipulated Universal 3D (.U3D) files received from untrusted sources in SAP 3D Visual Enterprise Viewer, the application crashes and becomes temporarily unavailable to the user until restart of the application.
https://www.zerodayinitiative.com/advisories/ZDI-21-314/
https://www.zerodayinitiative.com/advisories/ZDI-21-313/
https://www.zerodayinitiative.com/advisories/ZDI-21-311/
https://wiki.scn.sap.com/wiki/pages/viewpage.action?pageId=571343107
https://launchpad.support.sap.com/#/notes/3027767
Source: Mitre, NVD
Published: 2021-03-09
Updated: 2026-06-17
Base Score: 6.8
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
Severity: Medium
Base Score: 7.8
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: High
EPSS: 0.00244