CVE-2025-1884 | THREATINT

Description

Use-After-Free vulnerability exists in the SLDPRT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted SLDPRT file.

PUBLISHED Reserved 2025-03-03 | Published 2025-05-02 | Updated 2025-05-02 | Assigner 3DS

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-416 Use After Free

Product status

Default status

unaffected

Release SOLIDWORKS Desktop 2025 SP0 (custom)

affected

References

www.3ds.com/vulnerability/advisories

cve.org (CVE-2025-1884)

nvd.nist.gov (CVE-2025-1884)

Download JSON