CVE-2026-7858
CRITICALDassault Teamwork Cloud and Magic Collaboration Studio - Deserialization RCE
Title source: manualDescription
A Deserialization of Untrusted Data vulnerability affecting Teamwork Cloud from No Magic Release 2022x through No Magic Release 2026x and Magic Collaboration Studio from CATIA Magic Release 2022x through CATIA Magic Release 2026x could lead to an unauthenticated remote code execution.
References (1)
Core 1
Scores
CVSS v3
9.8
EPSS
0.0045
EPSS Percentile
35.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
total
Details
CWE
CWE-502
Status
published
Products (15)
Dassault Systèmes/Magic Collaboration Studio
CATIA Magic Release 2022x Golden - CATIA Magic Release 2022x Refresh2 HF3
Dassault Systèmes/Magic Collaboration Studio
CATIA Magic Release 2024x Golden - CATIA Magic Release 2024x Refresh3 HF1
Dassault Systèmes/Magic Collaboration Studio
CATIA Magic Release 2026x Golden - CATIA Magic Release 2026x Golden HF2
Dassault Systèmes/Teamwork Cloud - Business Edition
No Magic Release 2022x Golden - No Magic Release 2022x Refresh2 HF3
Dassault Systèmes/Teamwork Cloud - Business Edition
No Magic Release 2024x Golden - No Magic Release 2024x Refresh3 HF1
Dassault Systèmes/Teamwork Cloud - Business Edition
No Magic Release 2026x Golden - No Magic Release 2026x Golden HF2
Dassault Systèmes/Teamwork Cloud - Business Pro Edition
No Magic Release 2022x Golden - No Magic Release 2022x Refresh2 HF3
Dassault Systèmes/Teamwork Cloud - Business Pro Edition
No Magic Release 2024x Golden - No Magic Release 2024x Refresh3 HF1
Dassault Systèmes/Teamwork Cloud - Business Pro Edition
No Magic Release 2026x Golden - No Magic Release 2026x Golden HF2
Dassault Systèmes/Teamwork Cloud - Enterprise Edition
No Magic Release 2022x Golden - No Magic Release 2022x Refresh2 HF3
... and 5 more
Published
Jun 01, 2026
Tracked Since
Jun 01, 2026