CVE-2025-6204

EUVD-2025-23494
An Improper Control of Generation of Code (Code Injection) vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to execute arbitrary code.
Code Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8 HIGH
NETWORK
HIGH
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
3DSCNA
8 HIGH
NETWORK
HIGH
HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 92%
Affected Products (NVD)
VendorProductVersion
3dsdelmia_apriso
2020 ≤
𝑥
≤ 2025
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.3ds.com/trust-center/security/security-advisories/cve-2025-6204
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-6204