A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could lead to a remote code execution.
References
| Link | Resource |
|---|---|
| https://www.3ds.com/vulnerability/advisories | Vendor Advisory |
| https://isc.sans.edu/diary/Exploit+Attempts+for+Dassault+DELMIA+Apriso+CVE20255086/32256 | Exploit Third Party Advisory |
| https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-5086 |
Configurations
History
21 Oct 2025, 23:17
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
21 Oct 2025, 20:20
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
21 Oct 2025, 19:21
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
12 Sep 2025, 13:40
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
3ds
3ds delmia Apriso |
|
| References | () https://www.3ds.com/vulnerability/advisories - Vendor Advisory | |
| References | () https://isc.sans.edu/diary/Exploit+Attempts+for+Dassault+DELMIA+Apriso+CVE20255086/32256 - Exploit, Third Party Advisory | |
| CPE | cpe:2.3:a:3ds:delmia_apriso:*:*:*:*:*:*:*:* |
11 Sep 2025, 19:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
04 Jun 2025, 14:54
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-06-02 18:15
Updated : 2025-10-21 23:17
NVD link : CVE-2025-5086
Mitre link : CVE-2025-5086
CVE.ORG link : CVE-2025-5086
JSON object : View
Products Affected
3ds
- delmia_apriso
CWE
CWE-502
Deserialization of Untrusted Data