Code Injection Vulnerability in DELMIA Apriso by Dassault Systèmes
CVE-2025-6204
Key Information:
- Vendor
Dassault Systèmes
- Status
- Vendor
- CVE Published:
- 4 August 2025
Badges
What is CVE-2025-6204?
CVE-2025-6204 is a critical vulnerability identified within DELMIA Apriso, a software suite developed by Dassault Systèmes that specializes in manufacturing operations and process management. This vulnerability stems from an improper control of the generation of code, known as a code injection flaw, which allows attackers to execute arbitrary code on affected systems. DELMIA Apriso is widely utilized in industrial applications to optimize production processes and improve operational efficiency. A successful exploitation of this vulnerability could compromise the integrity and confidentiality of manufacturing data, disrupt operations, and expose organizations to significant operational and financial risks.
Potential Impact of CVE-2025-6204
-
Arbitrary Code Execution: The primary risk posed by CVE-2025-6204 is the potential for attackers to execute arbitrary code on compromised systems. This capability enables threat actors to take full control of affected systems, leading to unauthorized access and manipulation of critical manufacturing processes.
-
Operational Disruption: Exploiting this vulnerability could result in significant operational disruptions for organizations using DELMIA Apriso. Attackers may manipulate or halt production processes, leading to financial losses, diminished productivity, and potential harm to sensitive corporate data.
-
Data Breach Risks: If attackers gain control through this vulnerability, there is a heightened risk of data breaches involving sensitive intellectual property and operational data. Compromised information may be utilized for malicious purposes, including theft and industrial espionage, which could ultimately undermine an organization’s competitive advantage.
CISA has reported CVE-2025-6204
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2025-6204 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace as recent news articles suggest the vulnerability is being used by ransomware groups.
The CISA's recommendation is: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Affected Version(s)
DELMIA Apriso Release 2020 Golden
DELMIA Apriso Release 2021 Golden
DELMIA Apriso Release 2022 Golden
News Articles
CISA adds a pair of Dassault Systèmes’ DELMIA Apriso vulnerabilities to KEV catalogue
The US cyber agency warns of active exploitation of flaws that could lead to full application compromise of a popular manufacturing operations management platform.
1 week ago
CyberSecurityNewsCISA Warns of Dassault Systèmes Vulnerabilities Actively Exploited in Attacks
CISA has added two critical vulnerabilities affecting Dassault Systèmes DELMIA Apriso to its Known Exploited Vulnerabilities catalog, warning that threat actors are actively exploiting these security flaws in real-world attacks.
1 week ago
CISA Warns of Dassault Systèmes Vulnerabilities Actively Exploited in Attacks
CISA has added two critical vulnerabilities affecting Dassault Systèmes DELMIA Apriso to its Known Exploited Vulnerabilities catalog, warning that threat actors are actively exploiting these security flaws in real-world attacks.
1 week ago
References
EPSS Score
16% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
- 💰
Used in Ransomware
- 👾
Exploit known to exist
- 🦅
CISA Reported
- 📰
First article discovered by BleepingComputer
Vulnerability published
Vulnerability Reserved