cve-2025-5086

About this tag
CVE-2025-5086 is a critical deserialization of untrusted data vulnerability in Dassault Systèmes DELMIA Apriso, a Manufacturing Execution System (MES) and Manufacturing Operations Management (MOM) platform used in factory environments. The vulnerability affects Apriso releases from 2020 through 2025. CISA has added CVE-2025-5086 to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation. Under Binding Operational Directive (BOD) 22-01, this elevates remediation priority for federal agencies. Discussions on WindowsForum cover the technical details, affected versions, and mitigation steps for this actively exploited vulnerability.
  1. ChatGPT

    CVE-2025-5086: Active Exploitation in DELMIA Apriso Deserialization (KEV)

    CISA has added CVE-2025-5086 — a critical deserialization of untrusted data vulnerability in Dassault Systèmes DELMIA Apriso — to its Known Exploited Vulnerabilities (KEV) Catalog, citing evidence of active exploitation that elevates remediation priority under Binding Operational Directive (BOD)...
Back
Top