Find notable cyber news and cases, enriched with sources, timelines, and signals.

DELMIA Apriso patch release for CVE-2025-6204 and CVE-2025-6205

Security Patch Release
First reported
Last updated
Happening score
H score 45
1 unique sources, 1 articles

Summary

Hide ▲

Dassault Systèmes released patches and barebone advisories for DELMIA Apriso vulnerabilities CVE-2025-6204 and CVE-2025-6205, covering releases 2020 through 2025 and addressing flaws that can enable arbitrary code execution and privileged access. The update landed on August 4. The patched issues were later tied to known exploitation in the wild.

Related Happenings

JCE Pro 2.9.99.6 patch for CVE-2026-48907

Security Patch Release
H score46 First: 17.06.2026 13:09 Last: 17.06.2026 13:09 Sources 1

About this happening: **JCE security team** released **JCE Pro 2.9.99.6** in **early June 2026** to fix **CVE-2026-48907** in the **Widget Factory Joomla Content Editor (JCE) plugin**. The update addre...

Fortinet security patch release for CVE-2026-39813

Security Patch Release
H score41 First: 16.06.2026 12:19 Last: 16.06.2026 12:19 Sources 1

About this happening: **Fortinet** released **April 14** security updates for **FortiSandbox**, covering **CVE-2026-39813**, **CVE-2026-39808**, and **CVE-2026-25089**. The patch release fixes **three...

SimpleHelp security update for CVE-2026-48558

Security Patch Release
H score65 First: 15.06.2026 23:06 Last: 15.06.2026 23:06 Sources 1

About this happening: **SimpleHelp** released **5.5.16** and **6.0 RC2** on **June 9** to fix **CVE-2026-48558**, a critical **OIDC** authentication flaw in **SimpleHelp remote management software** th...

LiteLLM v1.83.14-stable security fix release (multiple vulnerabilities)

Security Patch Release
H score42 First: 15.06.2026 19:39 Last: 15.06.2026 19:39 Sources 1

About this happening: **BerriAI** shipped **LiteLLM v1.83.14-stable** to close a **three-CVE chain** that could let a low-privilege proxy user reach **full admin** and **run code on the server**. The u...

Langflow security patch release for CVE-2026-5027

Security Patch Release
H score38 First: 11.06.2026 00:23 Last: 11.06.2026 00:23 Sources 1

About this happening: **Langflow** shipped fixes for **CVE-2026-5027**, closing a **path traversal** flaw that let attackers write arbitrary files on exposed servers. The patch landed in **langflow-bas...

Timeline

  1. 29.10.2025 10:24 2 articles · 8mo ago

    Dassault Systèmes patches DELMIA Apriso CVE-2025-6204 and CVE-2025-6205

    Mitigation Patch Update

    Dassault Systèmes released patches and barebone advisories for DELMIA Apriso CVE-2025-6204 and CVE-2025-6205, covering releases 2020 through 2025 and addressing a code injection bug and a missing authorization issue.

    Show sources
  2. 29.10.2025 10:24 1 articles · 8mo ago

    ProjectDiscovery details the DELMIA Apriso privilege escalation chain

    Technical Analysis Update

    ProjectDiscovery published technical details showing that CVE-2025-6204 and CVE-2025-6205 can be chained to create accounts with elevated privileges and then place executable files into a web-served directory in DELMIA Apriso.

    Show sources
  3. 29.10.2025 10:24 1 articles · 8mo ago

    CISA adds DELMIA Apriso flaws CVE-2025-6204 and CVE-2025-6205 to KEV

    Initial Disclosure

    CISA warned that DELMIA Apriso CVE-2025-6204 and CVE-2025-6205 had been exploited in the wild and added both flaws to its Known Exploited Vulnerabilities (KEV) list, with federal agencies told to patch within three weeks under Binding Operational Directive (BOD) 22-01.

    Show sources