← back
CVE-2025-6972

Use After Free vulnerability exists in the CATPRODUCT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025

CVSS 7.8 HIGHEPSS 0.2%CWE-416
Use After Free vulnerability exists in the CATPRODUCT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted CATPRODUCT file.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
Dassault Systèmes · SOLIDWORKS eDrawings

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.3ds.com/trust-center/security/security-advisories/cve-2025-6972