2024-11-20
:
A critical vulnerability (CVE-2024-10204) exists in Dassault Systèmes eDrawings Viewer that allows remote attackers to execute arbitrary code on affected systems. This vulnerability is exploitable through user interaction, such as opening a malicious file.
Vulnerability Details:
Platform: eDrawings Viewer
Version: All versions from SOLIDWORKS 2024 through 2025 (unspecified)
Vulnerability: Heap-based buffer overflow and uninitialized variable vulnerabilities in X_B and SAT file parsing
Severity: Critical (CVSS: 7.8)
Date: October 16, 2024 (as per referenced CVE details)
What Undercode Says:
This critical vulnerability in eDrawings Viewer poses a significant risk. Attackers can exploit it to gain complete control of affected systems. Users of eDrawings Viewer versions between SOLIDWORKS 2024 and 2025 should patch their installations immediately.
Recommendations:
Update eDrawings Viewer to the latest patched version.
Exercise caution when opening files from untrusted sources.
Consider implementing additional security measures such as application whitelisting.
References:
Reported By: Zerodayinitiative.com
Undercode AI: https://ai.undercodetesting.com
Image Source:
OpenAI: https://openai.com
Undercode AI DI v2: https://ai.undercode.help