CVE-2026-1335 in SOLIDWORKS eDrawings
Summary
by MITRE • 02/16/2026
An Out-Of-Bounds Write vulnerability affecting the EPRT file reading procedure in SOLIDWORKS eDrawings from Release SOLIDWORKS Desktop 2025 through Release SOLIDWORKS Desktop 2026 could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Analysis
by VulDB Data Team • 02/18/2026
The vulnerability identified as CVE-2026-1335 represents a critical out-of-bounds write flaw within the EPRT file parsing functionality of SOLIDWORKS eDrawings software. This issue specifically affects versions ranging from SOLIDWORKS Desktop 2025 through 2026, creating a potential attack surface where malicious actors can exploit the software's handling of specially crafted EPRT files to achieve arbitrary code execution. The EPRT format is commonly used for storing 3D model data within the SOLIDWORKS ecosystem, making this vulnerability particularly concerning for users who frequently process external design files.
The technical implementation of this vulnerability stems from insufficient input validation and boundary checking within the file reading procedure that processes EPRT files. When the eDrawings application attempts to parse a malformed EPRT file, the software fails to properly validate array indices or buffer limits, allowing an attacker to craft a file that triggers memory corruption. This flaw manifests as an out-of-bounds write condition where malicious data is written beyond the allocated memory boundaries, potentially overwriting adjacent memory regions including function pointers, return addresses, or other critical program structures. The vulnerability aligns with CWE-787, which specifically addresses out-of-bounds write conditions, and represents a classic example of memory safety issues that enable privilege escalation and code execution attacks.
The operational impact of this vulnerability extends beyond simple arbitrary code execution, as it creates a persistent threat vector for both targeted attacks and broader exploitation campaigns. Attackers can leverage this vulnerability through social engineering tactics by distributing malicious EPRT files via email attachments, file sharing platforms, or compromised websites. The attack chain typically begins with user interaction, such as opening a crafted file, which triggers the vulnerable parsing routine and subsequently executes attacker-controlled code with the privileges of the affected user. This vulnerability maps to multiple ATT&CK techniques including initial access through malicious files, execution through file parsing, and privilege escalation through memory corruption exploits.
Organizations utilizing SOLIDWORKS eDrawings software should immediately implement mitigations including restricting user permissions when opening external files, implementing network-based file filtering, and deploying application whitelisting policies to prevent execution of untrusted EPRT files. The most effective immediate solution involves updating to the latest available patches from SOLIDWORKS, as vendors typically address such vulnerabilities through memory boundary validation fixes and input sanitization improvements. Additionally, security teams should monitor network traffic for suspicious file transfers and implement sandboxing mechanisms for any file processing workflows involving EPRT files. The vulnerability demonstrates the importance of robust input validation in file processing applications and highlights the necessity of defensive programming practices that prevent buffer overflows and memory corruption conditions in commercial CAD software environments.