CVE-2025-5086
Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data Vulnerability
CVSS
—
No CVSS
EPSS
89.7%
p100
KEV
YES
Sep 11, 2025
Exploit Today
80
0-100
Published: — · Last modified: —
Product
Dassault Systèmes / DELMIA Apriso
Vulnerability
Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data Vulnerability
Added to KEV
Sep 11, 2025
Remediate by
Oct 2, 2025
Known ransomware use
No
Summary description
Dassault Systèmes DELMIA Apriso contains a deserialization of untrusted data vulnerability that could lead to a remote code execution.
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notes
https://www.3ds.com/trust-center/security/security-advisories/cve-2025-5086 ; https://nvd.nist.gov/vuln/detail/CVE-2025-5086