CVE-2025-6974 | THREATINT

Description

Use of Uninitialized Variable vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted JT file.

PUBLISHED Reserved 2025-07-01 | Published 2025-07-15 | Updated 2025-07-15 | Assigner 3DS

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Problem types

CWE-457 Use of Uninitialized Variable

Product status

Default status

unaffected

Release SOLIDWORKS Desktop 2025 SP0 (custom)

affected

References

www.3ds.com/...er/security/security-advisories/cve-2025-6974

cve.org (CVE-2025-6974)

nvd.nist.gov (CVE-2025-6974)

Download JSON