CVE-2026-1334
Received Received - Intake

Out-Of-Bounds Read in SOLIDWORKS eDrawings EPRT Leads to RCE

Vulnerability report for CVE-2026-1334, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-02-16

Last updated on: 2026-02-26

Assigner: Dassault Systèmes

Description

An Out-Of-Bounds Read vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-02-16
Last Modified
2026-02-26
Generated
2026-07-06
AI Q&A
2026-02-16
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 8 associated CPEs
Vendor Product Version / Range
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2025
3ds solidworks_edrawings 2026
3ds solidworks_edrawings 2026

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-125 The product reads data past the end, or before the beginning, of the intended buffer.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-1334 is a high-severity Out-Of-Bounds Read vulnerability in the EPRT file reading procedure of SOLIDWORKS eDrawings, affecting versions from SOLIDWORKS Desktop 2025 through SOLIDWORKS Desktop 2026.

This vulnerability occurs due to improper handling of data during the parsing of EPRT files, which leads to an out-of-bounds read condition.

An attacker can exploit this by crafting a malicious EPRT file that, when opened, allows the attacker to execute arbitrary code on the affected system.

Impact Analysis

This vulnerability can have serious impacts as it allows an attacker to execute arbitrary code on your system by opening a specially crafted EPRT file.

  • Execution of arbitrary code could lead to unauthorized control over the affected system.
  • Potential compromise of system confidentiality, integrity, and availability.
  • Possible data breaches, system disruptions, or further malware installation.
Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-1334. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart