Use of Uninitialized Variable vulnerability exists in the JT file...

7.8 / 10

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Description

Use of Uninitialized Variable vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted JT file.

Basic Information

ID CVE-2025-6974

Source 3DS

Published Jul 15, 2025 at 15:04

Modified Jul 15, 2025 at 15:20

Affected Product

Vendor Dassault Systèmes

Product SOLIDWORKS eDrawings

Version Release SOLIDWORKS Desktop 2025 SP0

Affected Versions Dassault Systèmes SOLIDWORKS eDrawings Release SOLIDWORKS Desktop 2025 SP0

CWE Classification

CWE-457

References

www.3ds.com /trust-center/security/security-advisories/cve-2025-6974

{
    "lastseen": "",
    "description": "Use of Uninitialized Variable vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted JT file.",
    "published": "2025-07-15T15:04:16.913Z",
    "modified": "2025-07-15T15:20:51.039Z",
    "type": "cve",
    "title": "Use of Uninitialized Variable vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025",
    "source": "3DS",
    "references": "https://www.3ds.com/trust-center/security/security-advisories/cve-2025-6974",
    "id": "CVE-2025-6974",
    "bulletinFamily": "",
    "cwe": [
        "CWE-457"
    ],
    "cvelist": null,
    "sourceData": "Dassault Syst\u00e8mes SOLIDWORKS eDrawings Release SOLIDWORKS Desktop 2025 SP0",
    "sourceHref": "",
    "cvss": {
        "score": 7.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SOLIDWORKS eDrawings",
    "version": "Release SOLIDWORKS Desktop 2025 SP0",
    "vendor": "Dassault Syst\u00e8mes",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Use of Uninitialized Variable vulnerability exists in the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025_CVE-2025-6974