CVE-2026-1335
Out-Of-Bounds Write in SOLIDWORKS eDrawings EPRT Allows Code Execution
Publication date: 2026-02-16
Last updated on: 2026-02-26
Assigner: Dassault Systèmes
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| 3ds | solidworks_edrawings | 2025 |
| 3ds | solidworks_edrawings | 2025 |
| 3ds | solidworks_edrawings | 2025 |
| 3ds | solidworks_edrawings | 2025 |
| 3ds | solidworks_edrawings | 2025 |
| 3ds | solidworks_edrawings | 2025 |
| 3ds | solidworks_edrawings | 2026 |
| 3ds | solidworks_edrawings | 2026 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-787 | The product writes data past the end, or before the beginning, of the intended buffer. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-1335 is an Out-Of-Bounds Write vulnerability in the EPRT file reading procedure of SOLIDWORKS eDrawings. It affects versions from SOLIDWORKS Desktop 2025 through SOLIDWORKS Desktop 2026. This vulnerability allows an attacker to execute arbitrary code by opening a specially crafted EPRT file.
How can this vulnerability impact me? :
This vulnerability could allow an attacker to execute arbitrary code on your system when you open a specially crafted EPRT file in SOLIDWORKS eDrawings. This means the attacker could potentially take control of your system, leading to data loss, system compromise, or further malicious activities.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know