CVE-2026-1335

  1. Yack CVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-1335

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

A

n Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.

References
Link Resource
https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1335 Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:3ds:solidworks_edrawings:2025:-:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp1.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp2.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp3.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp4.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp5.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2026:-:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2026:sp1.1:*:*:*:*:*:*
History

26 Feb 2026, 18:15

Type Values Removed Values Added
CPE cpe:2.3:a:3ds:solidworks_edrawings:2025:sp4.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp5.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2026:sp1.1:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2026:-:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp3.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp2.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:sp1.0:*:*:*:*:*:*
cpe:2.3:a:3ds:solidworks_edrawings:2025:-:*:*:*:*:*:*
First Time 3ds
3ds solidworks Edrawings
References () https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1335 - () https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1335 - Vendor Advisory

18 Feb 2026, 17:52

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de escritura fuera de límites que afecta al procedimiento de lectura de archivos EPRT en SOLIDWORKS eDrawings desde la versión SOLIDWORKS Desktop 2025 hasta la versión SOLIDWORKS Desktop 2026 podría permitir a un atacante ejecutar código arbitrario al abrir un archivo EPRT especialmente diseñado.

16 Feb 2026, 14:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-02-16 14:16

Updated : 2026-02-26 18:15

NVD link : CVE-2026-1335

Mitre link : CVE-2026-1335

CVE.ORG link : CVE-2026-1335

JSON object : View

Products Affected

3ds

CWE
CWE-787

Out-of-bounds Write