Home
HIGH: 8.0 CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:HDefault status
unaffected
Release 2020 Golden (custom)
affected
Release 2021 Golden (custom)
affected
Release 2022 Golden (custom)
affected
Release 2023 Golden (custom)
affected
Release 2024 Golden (custom)
affected
Release 2025 Golden (custom)
affected
Description
An Improper Control of Generation of Code (Code Injection) vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to execute arbitrary code.
CISA Known Exploited Vulnerability
Date added 2025-10-28 | Due date 2025-11-18
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Problem types
CWE-94 Improper Control of Generation of Code ('Code Injection')
Product status
Release 2020 Golden (custom)
Release 2021 Golden (custom)
Release 2022 Golden (custom)
Release 2023 Golden (custom)
Release 2024 Golden (custom)
Release 2025 Golden (custom)
References
www.cisa.gov/...nerabilities-catalog?field_cve=CVE-2025-6204
www.3ds.com/...er/security/security-advisories/cve-2025-6204