Two vulnerabilities in DELMIA Apriso manufacturing software have been added to the CISA Known Exploited Vulnerabilities catalog, posing significant risks to organizations. These vulnerabilities include high-severity flaws that could lead to privilege escalation and arbitrary code execution. #DassaultSystèmes #DELMIAApriso
Keypoints
- CISA added CVE-2025-6204 and CVE-2025-6205 to the KEV catalog due to their exploitation potential.
- Both vulnerabilities affect DELMIA Apriso versions from 2020 through 2025 and are rated highly severe.
- CVE-2025-6205 allows attackers to gain privileged access, rated at 9.1 severity.
- CVE-2025-6204 permits arbitrary code execution through code injection, rated at 8.0 severity.
- Federal agencies have until November 18 to patch these vulnerabilities to mitigate risks.
Read More: https://thecyberexpress.com/delmia-apriso-vulnerabilities-under-attack/