The U.S. Cybersecurity and Infrastructure Security Agency (CISA) issued a warning about active exploitation of CVE-2025-5086, a critical remote code execution (RCE) vulnerability in DELMIA Apriso, Dassault Systèmes’ Manufacturing Operations Management (MOM) and Execution (MES) solution. The flaw, a deserialization of untrusted data issue (CVSS v3: 9.0), affects all versions from Release 2020 to 2025 and enables attackers to execute arbitrary code via malicious SOAP requests containing a Base64-encoded, GZIP-compressed .NET executable.Exploitation attempts were observed by SANS ISC, originating from IP 156.244.33[.]162, likely automated scans. The payload, a Windows executable flagged as malicious, could disrupt production scheduling, quality management, resource allocation, and warehouse operations—critical functions in automotive, aerospace, electronics, and industrial machinery sectors. CISA mandated federal agencies to patch or discontinue use by October 2, urging global private organizations to follow suit. A successful attack could halt factory operations, compromise process standardization, or disrupt supply chains, posing severe operational and financial risks to dependent industries.