{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-1333", "assignerOrgId": "f5a594e6-46a7-4e60-8a08-0a786e70e433", "state": "PUBLISHED", "assignerShortName": "3DS", "dateReserved": "2026-01-22T08:10:51.866Z", "datePublished": "2026-02-16T13:35:51.031Z", "dateUpdated": "2026-02-26T14:44:20.234Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "f5a594e6-46a7-4e60-8a08-0a786e70e433", "shortName": "3DS", "dateUpdated": "2026-02-16T13:35:51.031Z"}, "title": "Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-457", "description": "CWE-457 Use of Uninitialized Variable", "type": "CWE"}]}], "affected": [{"vendor": "Dassault Syst\u00e8mes", "product": "SOLIDWORKS eDrawings", "versions": [{"status": "affected", "version": "Release SOLIDWORKS Desktop 2025 SP0", "lessThanOrEqual": "Release SOLIDWORKS Desktop 2025 SP5", "versionType": "custom"}, {"status": "affected", "version": "Release SOLIDWORKS Desktop 2026 SP0"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file."}]}], "references": [{"url": "https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1333"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"}}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-1333", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-18T04:56:22.391850Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:44:20.234Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-1333", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-02-18T04:56:22.391850Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-17T14:56:57.612Z"}}], "cna": {"title": "Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026", "source": {"discovery": "EXTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Dassault Syst\u00e8mes", "product": "SOLIDWORKS eDrawings", "versions": [{"status": "affected", "version": "Release SOLIDWORKS Desktop 2025 SP0", "versionType": "custom", "lessThanOrEqual": "Release SOLIDWORKS Desktop 2025 SP5"}, {"status": "affected", "version": "Release SOLIDWORKS Desktop 2026 SP0"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1333"}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.", "supportingMedia": [{"type": "text/html", "value": "A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-457", "description": "CWE-457 Use of Uninitialized Variable"}]}], "providerMetadata": {"orgId": "f5a594e6-46a7-4e60-8a08-0a786e70e433", "shortName": "3DS", "dateUpdated": "2026-02-16T13:35:51.031Z"}}}, "cveMetadata": {"cveId": "CVE-2026-1333", "state": "PUBLISHED", "dateUpdated": "2026-02-26T14:44:20.234Z", "dateReserved": "2026-01-22T08:10:51.866Z", "assignerOrgId": "f5a594e6-46a7-4e60-8a08-0a786e70e433", "datePublished": "2026-02-16T13:35:51.031Z", "assignerShortName": "3DS"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2025:-:*:*:*:*:*:*", "matchCriteriaId": "3BFD2148-C6C4-4CF2-9F55-B2CA6718764E", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2025:sp1.0:*:*:*:*:*:*", "matchCriteriaId": "D287DF59-F58D-4E20-94CE-AC215210869E", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2025:sp2.0:*:*:*:*:*:*", "matchCriteriaId": "7AEE42D4-395E-4123-A6C3-6FB629E04DE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2025:sp3.0:*:*:*:*:*:*", "matchCriteriaId": "A83323FC-7F94-474C-A88D-9D7EBD2245CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2025:sp4.0:*:*:*:*:*:*", "matchCriteriaId": "78B93E6F-8D54-48E7-9316-BCCCE84CC4BD", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2025:sp5.0:*:*:*:*:*:*", "matchCriteriaId": "41D92A14-FC5A-458D-9905-96ED8B1AF37F", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2026:-:*:*:*:*:*:*", "matchCriteriaId": "D757A6BA-3930-429F-9A74-9CEA0A38BFDC", "vulnerable": true}, {"criteria": "cpe:2.3:a:3ds:solidworks_edrawings:2026:sp1.1:*:*:*:*:*:*", "matchCriteriaId": "593E69C3-57C6-498E-ABB8-4DA5C511E500", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file."}, {"lang": "es", "value": "Una vulnerabilidad de uso de variable no inicializada que afecta el procedimiento de lectura de archivos EPRT en SOLIDWORKS eDrawings desde la versi\u00f3n SOLIDWORKS Desktop 2025 hasta la versi\u00f3n SOLIDWORKS Desktop 2026 podr\u00eda permitir a un atacante ejecutar c\u00f3digo arbitrario al abrir un archivo EPRT especialmente dise\u00f1ado."}], "id": "CVE-2026-1333", "lastModified": "2026-02-26T18:15:50.280", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "3DS.Information-Security@3ds.com", "type": "Secondary"}]}, "published": "2026-02-16T14:16:18.003", "references": [{"source": "3DS.Information-Security@3ds.com", "tags": ["Vendor Advisory"], "url": "https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1333"}], "sourceIdentifier": "3DS.Information-Security@3ds.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-457"}], "source": "3DS.Information-Security@3ds.com", "type": "Secondary"}]}

{}

{"created": "2026-02-17T08:49:42.330582+00:00", "updated": "2026-02-17T08:49:42.330655+00:00", "vendors": ["dassault_systemes", "dassault_systemes$PRODUCT$solidworks_edrawings"]}