Known Vulnerabilities for products from 3ds
Listed below are 20 of the newest known vulnerabilities associated with the vendor "3ds".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-10559 json | A Path Traversal vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERI... | Not Provided | 2026-03-31 | 2026-04-06 |
| CVE-2025-10553 json | A Stored Cross-site Scripting (XSS) vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager fr... | Not Provided | 2026-03-31 | 2026-04-06 |
| CVE-2025-10551 json | A Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator fr... | Not Provided | 2026-03-31 | 2026-04-13 |
| CVE-2023-3589 json | A Cross-Site Request Forgery (CSRF) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Relea... | 7.5 - HIGH | 2023-10-09 | 2023-10-20 |
| CVE-2023-3588 json | A stored Cross-site Scripting (XSS) vulnerability affecting Teamwork Cloud from No Magic Release 2021x through No Magic Relea... | 5.4 - MEDIUM | 2023-09-13 | 2023-09-15 |
| CVE-2023-2763 json | Use-After-Free, Out-of-bounds Write and Heap-based Buffer Overflow vulnerabilities exist in the DWG and DXF file reading proc... | 7.8 - HIGH | 2023-07-12 | 2023-07-20 |
| CVE-2023-2762 json | A Use-After-Free vulnerability in SLDPRT file reading procedure exists in SOLIDWORKS Desktop from Release SOLIDWORKS 2021 thr... | 7.8 - HIGH | 2023-07-12 | 2023-07-20 |
| CVE-2023-2141 json | An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication re... | 8.8 - HIGH | 2023-04-21 | 2023-05-09 |
| CVE-2023-2140 json | A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthentica... | 7.5 - HIGH | 2023-04-21 | 2023-05-09 |
| CVE-2023-2139 json | A reflected Cross-site Scripting (XSS) Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker t... | 6.1 - MEDIUM | 2023-04-21 | 2023-05-02 |
| CVE-2023-1997 json | An OS Command Injection vulnerability exists in SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPE... | 8.8 - HIGH | 2023-08-28 | 2023-08-31 |
| CVE-2023-1996 json | A reflected Cross-site Scripting (XSS) vulnerability in Release 3DEXPERIENCE R2018x through Release 3DEXPERIENCE R2023x allow... | 6.1 - MEDIUM | 2023-05-19 | 2023-07-12 |
| CVE-2023-1288 json | An XML External Entity injection (XXE) vulnerability in ENOVIA Live Collaboration V6R2013xE allows an attacker to read local ... | 7.5 - HIGH | 2023-03-09 | 2023-11-07 |
| CVE-2023-1287 json | An XSL template vulnerability in ENOVIA Live Collaboration V6R2013xE allows Remote Code Execution. | 9.8 - CRITICAL | 2023-03-09 | 2023-11-07 |
| CVE-2020-25507 json | An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged... | 7.8 - HIGH | 2020-12-28 | 2021-01-04 |
| CVE-2014-2073 json | Stack-based buffer overflow in Dassault Systemes CATIA V5-6R2013 allows remote attackers to execute arbitrary code via a craf... | 9.8 - CRITICAL | 2018-04-10 | 2021-09-13 |
| CVE-2014-2072 json | Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks | 9.8 - CRITICAL | 2020-01-08 | 2020-01-17 |
| CVE-2013-4721 json | SQL injection vulnerability in the RSS feed from records extension 1.0.0 and earlier for TYPO3 allows remote attackers to exe... | 7.5 - HIGH | 2013-06-27 | 2017-08-29 |
| CVE-2012-4883 json | Multiple untrusted search path vulnerabilities in 3DVIA Composer V6R2012 HF1 Build 6.8.1.1652 allow local users to gain privi... | 6.9 - MEDIUM | 2012-09-07 | 2012-09-17 |
| CVE-2012-4882 json | Multiple untrusted search path vulnerabilities in 3D XML Player 6.212.13.12076 allow local users to gain privileges via a Tro... | 6.9 - MEDIUM | 2012-09-07 | 2012-09-10 |
Known software with vulnerabilities from 3ds
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | 3ds | 3dvia Composer | 6.8.1.1652 |
| Application | 3ds | Catia | v5-6r2013 |
| Application | 3ds | Teamwork Cloud | 18.0 |