What is CVE-2025-6205?

CVE-2025-6205 is a missing authorization vulnerability with a CVSS score of 9.1 that allows unauthenticated threat actors to remotely gain privileged access to unpatched DELMIA Apriso applications.

What is CVE-2025-6204?

CVE-2025-6204 is an improper control of code generation vulnerability with a CVSS score of 8.0 that allows attackers who already possess high-level privileges to execute arbitrary code on vulnerable systems. This vulnerability requires the attacker to have pre-existing elevated access.

Which versions of DELMIA Apriso are affected?

The flaws affect DELMIA Apriso installations across multiple release versions, from Release 2020 through Release 2025. Organizations running any version within this range are vulnerable to exploitation.

When were the DELMIA Apriso vulnerabilities patched?

Dassault Systèmes patched both vulnerabilities in early August 2025. Organizations should prioritize remediation immediately.

Are these DELMIA Apriso vulnerabilities being actively exploited?

Yes, CISA has issued a warning that threat actors are actively exploiting both CVE-2025-6205 and CVE-2025-6204 in DELMIA Apriso software.

What are the severity ratings of the DELMIA Apriso vulnerabilities?

CVE-2025-6205 has a CVSS score of 9.1, which is critical severity. CVE-2025-6204 has a CVSS score of 8.0, which is high severity.

What can attackers do with CVE-2025-6205?

CVE-2025-6205 is a missing authorization vulnerability that allows unauthenticated threat actors to remotely gain privileged access to unpatched DELMIA Apriso applications without requiring any prior authentication.

Does CVE-2025-6204 require authentication?

Yes, CVE-2025-6204 requires the attacker to already have high-level privileges and pre-existing elevated access to the system before they can exploit the vulnerability to execute arbitrary code.

Attack

CISA warns of actively exploited flaws in Dassault DELMIA Apriso manufacturing software

Q: What is DELMIA Apriso?

DELMIA Apriso is manufacturing operations management (MOM) and manufacturing execution system (MES) software developed by Dassault Systèmes.

published: Oct. 28, 2025

Take action: If you're using Dassault Systèmes DELMIA Apriso manufacturing software (Release 2020 through 2025), make sure these systems are isolated from the internet and untrusted networks. Then plan a quick patch to versions released in August 2025 and educate your administrators on phishing and malware risks.

Learn More

CISA has issued a warning that threat actors are actively exploiting two vulnerabilities in Dassault Systèmes' DELMIA Apriso manufacturing operations management (MOM) and manufacturing execution system (MES) software.

Vulnerabilities summary

CVE-2025-6205 (CVSS score 9.1), a missing authorization vulnerability that allows unauthenticated threat actors to remotely gain privileged access to unpatched DELMIA Apriso applications.
CVE-2025-6204 (CVSS score 8.0) an improper control of code generation vulnerability that allows attackers who already possess high-level privileges to execute arbitrary code on vulnerable systems. This vulnerability requires the attacker to have pre-existing elevated access.

The flaws affect DELMIA Apriso installations across multiple release versions, from Release 2020 through Release 2025.

Dassault Systèmes patched both vulnerabilities in early August 2025. Organizations running any version within this range are vulnerable to exploitation and should prioritize patching and isolate the systems from untrusted networks.

CISA warns of actively exploited flaws in Dassault DELMIA Apriso manufacturing software

Read More
FCX routers vulnerable to actively exploited flaw by …
Chinese cyber espionage group uses Cisco zero-day flaw …
Palo Alto reports two actively exploited flaws in …
Critical Privilege Escalation Vulnerability Reported in WordPress User …
SAP fixes second actively exploited NetWeaver vulnerability