CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Nov 18, 2025

CVE-2025-6205

High

EPSS 49.5%CISA KEV

Description

Dassault Systèmes DELMIA Apriso contains a missing authorization vulnerability that could allow an attacker to gain privileged access to the application.

EPSS — Exploit Probability

49.5%

Higher than 97.8% of all CVEs

Required Action

https://www.3ds.com/trust-center/security/security-advisories/cve-2025-6205 ; https://nvd.nist.gov/vuln/detail/CVE-2025-6205

Risk Assessment

ELEVATED

In CISA KEV

Details

Severity: High
EPSS: 49.5%
CISA KEV: Yes
Ransomware: Unknown
Articles: 0

Timeline

Published

Oct 28, 2025

Added to KEV

Oct 28, 2025

Remediation Due

Nov 18, 2025

Affected Product

Dassault Systèmes

DELMIA Apriso

View all Dassault Systèmes CVEs

External Links

NVD (NIST)CVE Details MITRE CVE