CNNVD-202507-2045 Information

CNNVD ID

CNNVD-202507-2045

Related CVE

CVE-2025-6972

• CNNVD Published: 2025-07-15

Description (Chinese)

Dassault Systèmes SOLIDWORKS eDrawings是法国达索系统（Dassault Systèmes）公司的一款用于查看、共享和标注 2D/3D 设计文件的协作工具。 Dassault Systèmes SOLIDWORKS eDrawings存在安全漏洞，该漏洞源于CATPRODUCT文件读取过程中存在释放后重用，可能导致执行任意代码。

Description (English)

Dassault Systèmes SOLIIDWORKS eDrawings is a collaboration tool for the viewing, sharing and labelling of 2D/3D design documents of Dassault Systèmes, France. Dassault Systèmes SOLIIDWORKS eDrawings have a security loophole, which stems from the release and re-use of CATPRODUCT documents, which may lead to the enforcement of arbitrary codes.

Hazard Level

Medium

Vulnerability Type

资源管理错误

Affected Vendor

达索系统

Published

2025-07-15

Last Modified

2026-02-24

References

https://www.3ds.com/trust-center/security/security-advisories/cve-2025-6972 https://nvd.nist.gov/vuln/detail/CVE-2025-6972