CVE-2024-10204
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 19, 2024
CWE ID 122
CWE ID 457
Summary
CVE-2024-10204 is a critical vulnerability affecting eDrawings from SOLIDWORKS 2024 to 2025. The issue involves heap-based Buffer Overflow and an Uninitialized Variable in the X_B and SAT file reading procedure. These weaknesses could be exploited by an attacker, allowing the execution of arbitrary code upon opening a maliciously crafted X_B or SAT file. This poses a significant risk to users of the affected software. It is highly recommended that users upgrade to the latest version of eDrawings or apply the necessary patches to mitigate this hazard.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share