CVE-2024-10204 Heap-based Buffer Overflow and Uninitialized Variable vulnerabilities exist in eDrawings from Release SOLIDWORKS 2024 through Release SOLIDWORKS 2025

🗓️ 19 Nov 2024 13:15:41Reported by 3DSType

CVE-2024-10204 vulnerabilities in eDrawing

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-10204	19 Nov 202406:00	–	circl
CNNVD	Dassault Systèmes eDrawings 安全漏洞	19 Nov 202400:00	–	cnnvd
CVE	CVE-2024-10204	19 Nov 202413:15	–	cve
EUVD	EUVD-2024-33400	3 Oct 202520:07	–	euvd
NVD	CVE-2024-10204	19 Nov 202414:15	–	nvd
Positive Technologies	PT-2024-16117 · Solidworks · Edrawings	19 Nov 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-10204	5 Feb 202505:14	–	redhatcve
Vulnrichment	CVE-2024-10204 Heap-based Buffer Overflow and Uninitialized Variable vulnerabilities exist in eDrawings from Release SOLIDWORKS 2024 through Release SOLIDWORKS 2025	19 Nov 202413:15	–	vulnrichment
Zero Day Initiative	Dassault Systèmes eDrawings Viewer SAT File Parsing Uninitialized Variable Remote Code Execution Vulnerability	19 Nov 202400:00	–	zdi
Zero Day Initiative	Dassault Systèmes eDrawings Viewer X_B File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability	19 Nov 202400:00	–	zdi

[
  {
    "vendor": "Dassault Systèmes",
    "product": "eDrawings",
    "versions": [
      {
        "status": "affected",
        "version": "Release SOLIDWORKS 2024 SP0",
        "lessThanOrEqual": "Release SOLIDWORKS 2024 SP5",
        "versionType": "custom"
      },
      {
        "status": "affected",
        "version": "Release SOLIDWORKS 2025 SP0"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
3ds	www.3ds.com/vulnerability/advisories

19 Nov 2024 13:15Current

CVSS 3.17.8

EPSS0.0023