DELMIA Apriso patch release for CVE-2025-6204 and CVE-2025-6205
Security Patch Release
Summary
Hide ▲
Show ▼
Dassault Systèmes released patches and barebone advisories for DELMIA Apriso vulnerabilities CVE-2025-6204 and CVE-2025-6205, covering releases 2020 through 2025 and addressing flaws that can enable arbitrary code execution and privileged access. The update landed on August 4. The patched issues were later tied to known exploitation in the wild.
Related Happenings
JCE Pro 2.9.99.6 patch for CVE-2026-48907
Security Patch Release
H score46
First: 17.06.2026 13:09
Last: 17.06.2026 13:09
Sources 1
About this happening:
**JCE security team** released **JCE Pro 2.9.99.6** in **early June 2026** to fix **CVE-2026-48907** in the **Widget Factory Joomla Content Editor (JCE) plugin**. The update addre...
JCE Pro 2.9.99.6 patch for CVE-2026-48907
Security Patch ReleaseAbout this happening: **JCE security team** released **JCE Pro 2.9.99.6** in **early June 2026** to fix **CVE-2026-48907** in the **Widget Factory Joomla Content Editor (JCE) plugin**. The update addre...
Fortinet security patch release for CVE-2026-39813
Security Patch Release
H score41
First: 16.06.2026 12:19
Last: 16.06.2026 12:19
Sources 1
About this happening:
**Fortinet** released **April 14** security updates for **FortiSandbox**, covering **CVE-2026-39813**, **CVE-2026-39808**, and **CVE-2026-25089**. The patch release fixes **three...
Fortinet security patch release for CVE-2026-39813
Security Patch ReleaseAbout this happening: **Fortinet** released **April 14** security updates for **FortiSandbox**, covering **CVE-2026-39813**, **CVE-2026-39808**, and **CVE-2026-25089**. The patch release fixes **three...
SimpleHelp security update for CVE-2026-48558
Security Patch Release
H score65
First: 15.06.2026 23:06
Last: 15.06.2026 23:06
Sources 1
About this happening:
**SimpleHelp** released **5.5.16** and **6.0 RC2** on **June 9** to fix **CVE-2026-48558**, a critical **OIDC** authentication flaw in **SimpleHelp remote management software** th...
SimpleHelp security update for CVE-2026-48558
Security Patch ReleaseAbout this happening: **SimpleHelp** released **5.5.16** and **6.0 RC2** on **June 9** to fix **CVE-2026-48558**, a critical **OIDC** authentication flaw in **SimpleHelp remote management software** th...
LiteLLM v1.83.14-stable security fix release (multiple vulnerabilities)
Security Patch Release
H score42
First: 15.06.2026 19:39
Last: 15.06.2026 19:39
Sources 1
About this happening:
**BerriAI** shipped **LiteLLM v1.83.14-stable** to close a **three-CVE chain** that could let a low-privilege proxy user reach **full admin** and **run code on the server**. The u...
LiteLLM v1.83.14-stable security fix release (multiple vulnerabilities)
Security Patch ReleaseAbout this happening: **BerriAI** shipped **LiteLLM v1.83.14-stable** to close a **three-CVE chain** that could let a low-privilege proxy user reach **full admin** and **run code on the server**. The u...
Langflow security patch release for CVE-2026-5027
Security Patch Release
H score38
First: 11.06.2026 00:23
Last: 11.06.2026 00:23
Sources 1
About this happening:
**Langflow** shipped fixes for **CVE-2026-5027**, closing a **path traversal** flaw that let attackers write arbitrary files on exposed servers. The patch landed in **langflow-bas...
Langflow security patch release for CVE-2026-5027
Security Patch ReleaseAbout this happening: **Langflow** shipped fixes for **CVE-2026-5027**, closing a **path traversal** flaw that let attackers write arbitrary files on exposed servers. The patch landed in **langflow-bas...
Timeline
-
29.10.2025 10:24 2 articles · 8mo ago
Dassault Systèmes patches DELMIA Apriso CVE-2025-6204 and CVE-2025-6205
Mitigation Patch UpdateDassault Systèmes released patches and barebone advisories for DELMIA Apriso CVE-2025-6204 and CVE-2025-6205, covering releases 2020 through 2025 and addressing a code injection bug and a missing authorization issue.
Show sources
- CISA Warns of Exploited DELMIA Factory Software Vulnerabilities — www.securityweek.com — 29.10.2025 10:24
- CISA Warns of Exploited DELMIA Factory Software Vulnerabilities — www.securityweek.com — 29.10.2025 10:24
-
29.10.2025 10:24 1 articles · 8mo ago
ProjectDiscovery details the DELMIA Apriso privilege escalation chain
Technical Analysis UpdateProjectDiscovery published technical details showing that CVE-2025-6204 and CVE-2025-6205 can be chained to create accounts with elevated privileges and then place executable files into a web-served directory in DELMIA Apriso.
Show sources
- CISA Warns of Exploited DELMIA Factory Software Vulnerabilities — www.securityweek.com — 29.10.2025 10:24
-
29.10.2025 10:24 1 articles · 8mo ago
CISA adds DELMIA Apriso flaws CVE-2025-6204 and CVE-2025-6205 to KEV
Initial DisclosureCISA warned that DELMIA Apriso CVE-2025-6204 and CVE-2025-6205 had been exploited in the wild and added both flaws to its Known Exploited Vulnerabilities (KEV) list, with federal agencies told to patch within three weeks under Binding Operational Directive (BOD) 22-01.
Show sources
- CISA Warns of Exploited DELMIA Factory Software Vulnerabilities — www.securityweek.com — 29.10.2025 10:24