1. Hawk Ridge Systems
  2. Technical Support
  3. News & Updates

eDrawings Vulnerability CVE-2026-1283 & CVE-2026-1284

Avatar
David Severud

In eDrawings 2025 & 2026, there are the following vulnerabilities:

  • CVE-2026-1283: A Heap-based Buffer Overflow vulnerability affecting the EPRT-file reading procedure. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.
  • CVE-2026-1284: An Out-Of-Bounds Write vulnerability affecting the EPRT-file reading procedure. This vulnerability could allow an attacker to execute arbitrary code while opening a specially crafted EPRT file.

At this time, there is no known impact for other products. The latest information on these vulnerabilities can be found through this SolidWorks QA article: https://support.3ds.com/knowledge-base/?q=docid:QA00000442322

And this Dassault Systèmes website: https://www.3ds.com/trust-center/security/security-advisories 

Affected versions:

  • eDrawings Viewer 2025 SP0 - SP5
  • eDrawings Commercial 2025 SP0 - 2026 SP0

Solution:

At this time, if you are using the eDrawings Viewer, upgrade to 2026 SP0 or newer. The latest version of eDrawings Viewer can be downloaded from: https://www.solidworks.com/support/free-downloads

If you are using the Commercial version of eDrawings, which is installed with SolidWorks, upgrade to 2026 SP0 and install a hotfix, or upgrade to 2026 SP1.1 when it is released. The latest version of SolidWorks used to install eDrawings Commercial can be downloaded here: https://www.solidworks.com/support/downloads 

To apply the hotfix:

  1. Verify that eDrawings 2026 SP0 is the current installed version by going to Help> About eDrawings.
  2. Close active eDrawings sessions and ensure that eDrawings.exe is not running in the Windows® Task Manager. Right-click the process and end the process if it is active.
  3. Download the HotFix_HF-1456080_HF-1456073_2026sp0.exe file attached to this article and save it to a local disk.
  4. Run the HotFix_HF-1456080_HF-1456073_2026sp0.exe file. This file extracts and installs the hotfix.
  5. Verify that you successfully applied the hotfix by going to Apps & features in the Windows Search bar. Confirm that the list includes the entry SolidWorks HotFix HF-1456080_HF-1456073 as an installed item.

Note: Before you install a future eDrawings release or service pack, you must remove the hotfix.

To remove the hotfix:

  1. Go to Apps & features in the Windows Search bar.
  2. From the list of Programs, select SolidWorks HotFix HF-1456080_HF-1456073.
  3. Click Uninstall and follow the steps to remove SolidWorks HotFix HF-1456080_HF-1456073.

For further assistance, please contact our support team at support@hawkridgesys.com, or 877-266-4469 (US) or 866-587-6803 (Canada). 

 

 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Article is closed for comments.

Articles in this section

See more