CVE-2026-5120 PUBLISHED

Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026

Assigner: 3DS
Reserved: 30.03.2026 Published: 01.07.2026 Updated: 01.07.2026

A Race Condition vulnerability affecting BIOVIA Workbook from Release 2021 through Release 2026 could allow a user to access unauthorized data from another user.

Metrics

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
CVSS Score: 8.1

Product Status

Vendor Dassault Systèmes
Product BIOVIA Workbook
Versions Default: unaffected
  • affected from Release 2021 Golden to Release 2021 Refresh5 (incl.)
  • affected from Release 2022 Golden to Release 2022 Refresh5 (incl.)
  • affected from Release 2023 Golden to Release 2023 Refresh4 (incl.)
  • affected from Release 2024 Golden to Release 2024 Refresh4 (incl.)
  • affected from Release 2025 Golden to Release 2025 Refresh3 (incl.)
  • Version Release 2026 Golden is affected

References

Problem Types

  • CWE-362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE