CVE-2026-7858

Published: Jun 1, 2026

Modified: Jun 1, 2026

PUBLISHED

CVSS v3.1

9.8

CRITICAL

Description

A Deserialization of Untrusted Data vulnerability affecting Teamwork Cloud from No Magic Release 2022x through No Magic Release 2026x and Magic Collaboration Studio from CATIA Magic Release 2022x through CATIA Magic Release 2026x could lead to an unauthenticated remote code execution.

Vendor	Product	Versions
Dassault Systèmes	Teamwork Cloud - Standard Edition	affected `No Magic Release 2022x Golden - <= No Magic Release 2022x Refresh2 HF3` affected `No Magic Release 2024x Golden - <= No Magic Release 2024x Refresh3 HF1` affected `No Magic Release 2026x Golden - <= No Magic Release 2026x Golden HF2`
Dassault Systèmes	Teamwork Cloud - Business Edition	affected `No Magic Release 2022x Golden - <= No Magic Release 2022x Refresh2 HF3` affected `No Magic Release 2024x Golden - <= No Magic Release 2024x Refresh3 HF1` affected `No Magic Release 2026x Golden - <= No Magic Release 2026x Golden HF2`
Dassault Systèmes	Teamwork Cloud - Business Pro Edition	affected `No Magic Release 2022x Golden - <= No Magic Release 2022x Refresh2 HF3` affected `No Magic Release 2024x Golden - <= No Magic Release 2024x Refresh3 HF1` affected `No Magic Release 2026x Golden - <= No Magic Release 2026x Golden HF2`
Dassault Systèmes	Teamwork Cloud - Enterprise Edition	affected `No Magic Release 2022x Golden - <= No Magic Release 2022x Refresh2 HF3` affected `No Magic Release 2024x Golden - <= No Magic Release 2024x Refresh3 HF1` affected `No Magic Release 2026x Golden - <= No Magic Release 2026x Golden HF2`
Dassault Systèmes	Magic Collaboration Studio	affected `CATIA Magic Release 2022x Golden - <= CATIA Magic Release 2022x Refresh2 HF3` affected `CATIA Magic Release 2024x Golden - <= CATIA Magic Release 2024x Refresh3 HF1` affected `CATIA Magic Release 2026x Golden - <= CATIA Magic Release 2026x Golden HF2`

Weaknesses (CWE)

CWE-502

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

https://www.3ds.com/trust-center/security/security-advisories/cve-2026-7858

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-7858

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References