10 new critical disclosures — review patch status on exposed services.
Top threats today
Three highest-priority changes — analyst brief, not a CVE dump.
Critical active threat
CVE-2025-5086Dassault Systèmes DELMIA Apriso Deserialization of Untrusted Data
Actively exploited (CISA KEV)
Listed on CISA KEV
Remote code execution exposure
Dassault Systèmes DELMIA Apriso RCE is on CISA KEV — confirmed in-the-wild exploitation. Expect continued targeting while the issue remains on the catalog.
Critical exposure
CVE-2025-58321Delta Electronics DIALink has an Directory Traversal Authentication Bypass Vulnerability.
CVSS 10
New critical Deltaww Dialink Directory Traversal (CVSS 10) — fresh disclosure window; early internet scanning often precedes mature exploit chains.