← back
CVE-2023-2762

Use-After-Free vulnerability in SLDPRT file reading procedure affecting SOLIDWORKS Desktop from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023

CVSS 7.8 HIGHEPSS 0.3%CWE-416
A Use-After-Free vulnerability in SLDPRT file reading procedure exists in SOLIDWORKS Desktop from Release SOLIDWORKS 2021 through Release SOLIDWORKS 2023. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted SLDPRT file.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Dassault Systèmes · SOLIDWORKS Desktop

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.3ds.com/vulnerability/advisories