CVE-2026-1333
Received Received - Intake
Use of Uninitialized Variable in SOLIDWORKS eDrawings EPRT Leads to RCE

Publication date: 2026-02-16

Last updated on: 2026-02-26

Assigner: Dassault Systèmes

Description
A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-02-16
Last Modified
2026-02-26
Generated
2026-06-16
AI Q&A
2026-02-16
EPSS Evaluated
2026-06-14
NVD
CVE-2026-1333
EUVD
EUVD-2026-6087
Affected Vendors & Products
Showing 8 associated CPEs
Vendor Product Version / Range
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2026
3ds solidworks_edrawings 2026
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-457 The code uses a variable that has not been initialized, leading to unpredictable or unintended results.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Mitigation Strategies

To mitigate this vulnerability, avoid opening EPRT files from untrusted or unknown sources in SOLIDWORKS eDrawings versions from Desktop 2025 through Desktop 2026.

Monitor for updates or patches from the vendor (3DS) addressing this Use of Uninitialized Variable vulnerability and apply them as soon as they become available.

Compliance Impact

I don't know

Detection Guidance

I don't know

Executive Summary

CVE-2026-1333 is a Use of Uninitialized Variable vulnerability in the EPRT file reading procedure of SOLIDWORKS eDrawings. It affects versions from SOLIDWORKS Desktop 2025 through SOLIDWORKS Desktop 2026.

This vulnerability allows an attacker to execute arbitrary code by opening a specially crafted EPRT file.

Impact Analysis

The vulnerability could allow an attacker to execute arbitrary code on your system when you open a specially crafted EPRT file in SOLIDWORKS eDrawings.

This could lead to a full compromise of the affected system, including unauthorized access, data modification, or disruption of services.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-1333. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart