VYPR

Apriso

by IBM

CVEs (9)

  • CVE-2025-5086CriKEVJun 2, 2025
    risk 0.78cvss 9.0epss 0.89

    A deserialization of untrusted data vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could lead to a remote code execution.

  • CVE-2025-6205CriKEVAug 4, 2025
    risk 0.77cvss 9.1epss 0.71

    A missing authorization vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to gain privileged access to the application.

  • CVE-2025-6204HigKEVAug 4, 2025
    risk 0.70cvss 8.0epss 0.76

    An Improper Control of Generation of Code (Code Injection) vulnerability affecting DELMIA Apriso from Release 2020 through Release 2025 could allow an attacker to execute arbitrary code.

  • CVE-2024-3300CriMay 30, 2024
    risk 0.59cvss 9.0epss 0.03

    An unsafe .NET object deserialization vulnerability in DELMIA Apriso Release 2019 through Release 2024 could lead to pre-authentication remote code execution.

  • CVE-2024-3301HigMay 30, 2024
    risk 0.55cvss 8.5epss 0.01

    An unsafe .NET object deserialization vulnerability in DELMIA Apriso Release 2019 through Release 2024 could lead to post-authentication remote code execution.

  • CVE-2023-2141HigApr 21, 2023
    risk 0.55cvss 8.5epss 0.01

    An unsafe .NET object deserialization in DELMIA Apriso Release 2017 through Release 2022 could lead to post-authentication remote code execution.

  • CVE-2023-2140HigApr 21, 2023
    risk 0.49cvss 7.5epss 0.01

    A Server-Side Request Forgery vulnerability in DELMIA Apriso Release 2017 through Release 2022 could allow an unauthenticated attacker to issue requests to arbitrary hosts on behalf of the server running the DELMIA Apriso application.

  • CVE-2023-2139MedApr 21, 2023
    risk 0.35cvss 5.4epss 0.00

    A reflected Cross-site Scripting (XSS) Vulnerability in DELMIA Apriso Release 2017 through Release 2022 allows an attacker to execute arbitrary script code.

  • CVE-2024-0935MedFeb 1, 2024
    risk 0.29cvss 4.4epss 0.00

    Insertion of Sensitive Information into Log File vulnerabilities are affecting DELMIA Apriso Release 2019 through Release 2024