CVE-2025-6205
Dassault Systèmes DELMIA Apriso Missing Authorization Vulnerability
CVSS
—
No CVSS
EPSS
71.1%
p99
KEV
YES
Oct 28, 2025
Exploit Today
80
0-100
Published: — · Last modified: —
Product
Dassault Systèmes / DELMIA Apriso
Vulnerability
Dassault Systèmes DELMIA Apriso Missing Authorization Vulnerability
Added to KEV
Oct 28, 2025
Remediate by
Nov 18, 2025
Known ransomware use
No
Summary description
Dassault Systèmes DELMIA Apriso contains a missing authorization vulnerability that could allow an attacker to gain privileged access to the application.
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notes
https://www.3ds.com/trust-center/security/security-advisories/cve-2025-6205 ; https://nvd.nist.gov/vuln/detail/CVE-2025-6205