Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Dassault Systèmes — Vulnerabilities & Security Advisories 95

Browse all 95 CVE security advisories affecting Dassault Systèmes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Dassault Systèmes provides computer-aided design (CAD), computer-aided manufacturing (CAM), and product lifecycle management (PLM) software, primarily serving engineering and manufacturing sectors. The company’s extensive portfolio, including CATIA and SolidWorks, presents a significant attack surface, evidenced by the 95 recorded Common Vulnerabilities and Exposures (CVEs). Historically, these security flaws frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation vulnerabilities, often stemming from complex integrations and legacy codebases within its enterprise applications. While no single catastrophic breach has defined the vendor’s public security history, the high volume of CVEs indicates persistent challenges in patching and securing its diverse software ecosystem. Security analysts recommend rigorous network segmentation and immediate application of vendor patches to mitigate risks associated with these known exploits, particularly given the critical nature of the industrial data handled by its platforms.

Top products by Dassault Systèmes: ENOVIA Collaborative Industry Innovator SOLIDWORKS eDrawings 3DSwymer DELMIA Apriso SOLIDWORKS Desktop eDrawings Product Manager DELMIA Factory Resource Manager Project Portfolio Manager City Referential Manager Collaborative Industry Innovator Teamwork Cloud - Business Edition ENOVIA Live Collaboration ENOVIA Product Engineering Specialist ENOVIA Change Manager Documentation server BIOVIA Materials Studio products Service Process Engineer Multidisciplinary Optimization Engineer SIMULIA 3DOrchestrate 3DEXPERIENCE ENOVIA Specification Manager Station Launcher App in 3DEXPERIENCE platform DELMIA Service Process Engineer ENOVIA Product Manager ENOVIAvpm Web Access
CVE IDTitleCVSSSeverityPublished
CVE-2025-5086 Deserialization of Untrusted Data vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 — DELMIA AprisoCWE-502 9.0 Critical2025-06-02
CVE-2025-0602 Stored Cross-site Scripting (XSS) vulnerability affecting Compare in Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x — Collaborative Industry InnovatorCWE-79 8.7 High2025-05-30
CVE-2025-4983 Stored Cross-site Scripting (XSS) vulnerability affecting City Referential in City Referential Manager on Release 3DEXPERIENCE R2025x — City Referential ManagerCWE-79 8.7 High2025-05-30
CVE-2025-4984 Stored Cross-site Scripting (XSS) vulnerability affecting City Discover in City Referential Manager on Release 3DEXPERIENCE R2025x — City Referential ManagerCWE-79 8.7 High2025-05-30
CVE-2025-4985 Stored Cross-site Scripting (XSS) vulnerability affecting Risk Management in Project Portfolio Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x — Project Portfolio ManagerCWE-79 8.7 High2025-05-30
CVE-2025-4986 Stored Cross-site Scripting (XSS) vulnerability affecting Model Definition in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x — Product ManagerCWE-79 8.7 High2025-05-30
CVE-2025-4988 Stored Cross-site Scripting (XSS) vulnerability affecting Results Analytics in Multidisciplinary Optimization Engineer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — Multidisciplinary Optimization EngineerCWE-79 8.7 High2025-05-30
CVE-2025-4989 Stored Cross-site Scripting (XSS) vulnerability affecting Requirements in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x — Product ManagerCWE-79 8.7 High2025-05-30
CVE-2025-4990 Stored Cross-site Scripting (XSS) vulnerability affecting Change Governance in Product Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x — Product ManagerCWE-79 8.7 High2025-05-30
CVE-2025-4991 Stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2025x — Collaborative Industry InnovatorCWE-79 8.7 High2025-05-30
CVE-2025-4992 Stored Cross-site Scripting (XSS) vulnerability affecting Service Items Management in Service Process Engineer from Release 3DEXPERIENCE R2024x through Release 3DEXPERIENCE R2025x — Service Process EngineerCWE-79 8.7 High2025-05-30
CVE-2025-1884 Use-After-Free vulnerability exists in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025 — SOLIDWORKS eDrawingsCWE-416 7.8 High2025-05-02
CVE-2025-1883 Out-Of-Bounds Write vulnerability exists in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025 — SOLIDWORKS eDrawingsCWE-787 7.8 High2025-05-02
CVE-2025-0833 Stored Cross-site Scripting (XSS) vulnerability affecting Route Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0832 Stored Cross-site Scripting (XSS) vulnerability affecting Project Gantt in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0830 Stored Cross-site Scripting (XSS) vulnerability affecting Meeting Management in ENOVIA Change Manager from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Change ManagerCWE-79 8.7 High2025-03-17
CVE-2025-0829 Stored Cross-site Scripting (XSS) vulnerability affecting 3D Markup in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0828 Stored Cross-site Scripting (XSS) vulnerability affecting Engineering Release in ENOVIA Product Engineering Specialist from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Product Engineering SpecialistCWE-79 8.7 High2025-03-17
CVE-2025-0827 Stored Cross-site Scripting (XSS) vulnerability affecting 3DPlay in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — 3DSwymerCWE-79 8.7 High2025-03-17
CVE-2025-0826 Stored Cross-site Scripting (XSS) vulnerability affecting 3D Navigate in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0601 Stored Cross-site Scripting (XSS) vulnerability affecting Issue Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0600 Stored Cross-site Scripting (XSS) vulnerability affecting Product Explorer in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0599 Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0598 Stored Cross-site Scripting (XSS) vulnerability affecting Relations in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0596 Stored Cross-site Scripting (XSS) vulnerability affecting Bookmark Editor in ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2025-03-17
CVE-2025-0595 Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — 3DSwymerCWE-79 8.7 High2025-03-17
CVE-2024-12092 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2024-12-16
CVE-2024-12091 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2024-12-16
CVE-2024-12090 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator on Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2024-12-16
CVE-2024-12089 Stored Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x — ENOVIA Collaborative Industry InnovatorCWE-79 8.7 High2024-12-16

This page lists every published CVE security advisory associated with Dassault Systèmes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.