CVE-2026-1333

Published: Feb 16, 2026Modified: Feb 26, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: 3DS.Information-Security@3ds.com (Secondary)

Description

A Use of Uninitialized Variable vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.

Affected (8)

Products: 3ds: Solidworks Edrawings

3ds

1 product

Solidworks Edrawings

Configuration A

8 vulnerable

Vulnerable Software	Affected Versions
3ds Solidworks Edrawings	Version 2025
3ds Solidworks Edrawings	Version 2025 sp1.0
3ds Solidworks Edrawings	Version 2025 sp2.0
3ds Solidworks Edrawings	Version 2025 sp3.0
3ds Solidworks Edrawings	Version 2025 sp4.0
3ds Solidworks Edrawings	Version 2025 sp5.0
3ds Solidworks Edrawings	Version 2026
3ds Solidworks Edrawings	Version 2026 sp1.1

Related CWEs

CWE-457

Use of Uninitialized Variable

The code uses a variable that has not been initialized, leading to unpredictable or unintended results.

References (1)

https://www.3ds.com/trust-center/security/security-advisories/cve-2026-1333

Source: 3DS.Information-Security@3ds.com

Vendor Advisory

Timeline

No history available yet.