CVE-2025-7042

Summary

Use After Free vulnerability exists in the IPT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted IPT file.

Affected Software

VendorProductVersion RangeStatus
Dassault SystèmesSOLIDWORKS eDrawingsRelease SOLIDWORKS Desktop 2025 SP0 <= Release SOLIDWORKS Desktop 2025 SP2affected

Weaknesses

  • CWE-416: CWE-416 Use After Free

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References