ZDI-26-114 HIGH 7.8 Published Feb 19, 2026

Dassault Systèmes eDrawings Viewer EPRT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability

Dassault

A high-severity remote code execution vulnerability (CVE-2026-1335) affects Dassault Systèmes eDrawings Viewer, allowing attackers to execute arbitrary code if a user opens a malicious file or visits a malicious webpage. This vulnerability carries a CVSS score of 7.8 and requires user interaction to exploit. Security teams should prioritize patching eDrawings Viewer installations and advise users to avoid opening untrusted files or visiting suspicious websites until an update is available.

Related CVEs

CVE-2026-1335

Tags

RCE Buffer Overflow File Upload

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy