Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
3ds
3dexperience

3ds 3dexperience Vulnerabilities: CVEs, CISA KEV & Security Advisories

12 CVEs

3ds 3dexperience Vulnerabilities

CVE security advisories and vulnerability history for 3dexperience by 3ds.

12

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

0

Public exploits

With known exploit

8.3

Avg CVSS

2023–2026

Last updated March 31, 2026

Overview

3ds 3dexperience has 12 published CVE records since 2023, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs is 8.3.

This page aggregates every publicly disclosed vulnerability (CVE) affecting 3ds 3dexperience, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of 3ds 3dexperience's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical1

High10

Medium1

Low0

In CISA’s Known Exploited Vulnerabilities catalog

0

None of 3ds 3dexperience's CVEs are currently listed in CISA's KEV catalog.

Public exploits

0

No 3ds 3dexperience CVEs currently have a tracked public exploit.

Affected versions and CVEs

Browse every 3ds 3dexperience version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

> r2022.fp.cfa.24061 CVE
> R2023x.FP.CFA.23501 CVE
> R2024x.FP.CFA.24051 CVE

Find a version

12 CVEs

Sort

Path Traversal vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x
CVE-2025-10559
Patch
CWE-22
High · CVSS 7.1
EPSS 0.1% (22th pct)2026-03-31
Stored Cross-site Scripting (XSS) vulnerability affecting Factory Resource Management in DELMIA Factory Resource Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x
CVE-2025-10553
Patch
CWE-79
High · CVSS 8.7
EPSS 0.0% (12th pct)2026-03-31
Stored Cross-site Scripting (XSS) vulnerability affecting Document Management in ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x
CVE-2025-10551
Patch
CWE-79
High · CVSS 8.7
EPSS 0.0% (12th pct)2026-03-31
Stored Cross-site Scripting (XSS) vulnerability affecting 3DSwym in 3DSwymer on Release 3DEXPERIENCE R2024x
CVE-2024-7939
Patch
CWE-79
High · CVSS 8.7
EPSS 0.9% (77th pct)2024-09-02
Stored Cross-site Scripting (XSS) vulnerability affecting 3DDashboard in 3DSwymer from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2024x
CVE-2024-7938
Patch
CWE-79
High · CVSS 8.7
EPSS 0.9% (77th pct)2024-09-02
High vulnerability · 2024-09-02
CVE-2024-7932
Patch
CWE-79
High · CVSS 8.7
EPSS 0.9% (77th pct)2024-09-02
URL redirection to untrusted site (open redirect) vulnerability affecting 3DPassport in 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x
CVE-2024-6377
Patch
CWE-601
High · CVSS 8.1
EPSS 0.4% (62th pct)2024-08-20
High vulnerability · 2024-08-20
CVE-2024-6378
Patch
CWE-79
High · CVSS 8.7
EPSS 1.3% (80th pct)2024-08-20
Reflected Cross-site Scripting (XSS) vulnerability affecting 3DSwymer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x
CVE-2024-6379
Patch
CWE-79
High · CVSS 7.7
EPSS 1.0% (77th pct)2024-08-20
OS Command Injection vulnerability affecting documentation server on certain Releases of 3DEXPERIENCE, SIMULIA Abaqus, SIMULIA Isight and CATIA Composer
CVE-2024-1624
Patch
CWE-78
Critical · CVSS 9.4
EPSS 0.4% (58th pct)2024-03-01
OS Command Injection vulnerability affecting SIMULIA 3DOrchestrate from Release 3DEXPERIENCE R2021x through Release 3DEXPERIENCE R2023x
CVE-2023-1997
Patch
CWE-78
High · CVSS 8.8
EPSS 0.3% (56th pct)2023-08-28
Medium vulnerability · 2023-05-19
CVE-2023-1996
Patch
CWE-79
Medium · CVSS 6.1
EPSS 0.7% (72th pct)2023-05-19

Common weakness types

The CWE weakness categories most often found in 3ds 3dexperience CVEs. Follow any weakness for its full explanation.

CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')8 CVEs
CWE-78Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')2 CVEs
CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')1 CVE
CWE-601URL Redirection to Untrusted Site ('Open Redirect')1 CVE

Disclosure activity by year

How many 3ds 3dexperience CVEs were published each year.

2023

2

2024

7

2026

3

Other 3ds products

Browse vulnerabilities for other products by 3ds.

3dexperience enovia22 CVEs delmia apriso7 CVEs edrawings3 CVEs solidworks edrawings3 CVEs 3dexperience solidworks2 CVEs 3dswymer2 CVEs catia2 CVEs delmia_apriso2 CVEs

All 3ds vulnerabilities

Frequently asked questions

Common questions about 3ds 3dexperience vulnerabilities.

How many CVEs does 3ds 3dexperience have?

3ds 3dexperience has 12 published CVE records since 2023.

How many 3ds 3dexperience CVEs are in CISA KEV?

None of 3ds 3dexperience's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for 3ds 3dexperience vulnerabilities?

No 3ds 3dexperience CVEs currently have a tracked public exploit in this dataset.

Which versions of 3ds 3dexperience are affected?

3 distinct 3ds 3dexperience versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in 3ds 3dexperience CVEs?

3ds 3dexperience's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')), CWE-601 (URL Redirection to Untrusted Site ('Open Redirect')).

How many critical 3ds 3dexperience vulnerabilities are there?

3ds 3dexperience has 1 critical and 10 high-severity CVEs.

What is the average severity of 3ds 3dexperience CVEs?

The average CVSS base score across 3ds 3dexperience's scored CVEs is 8.3.

References

All 3ds vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track 3ds 3dexperience vulnerabilities

Monitor new 3ds 3dexperience vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References