CVE-2025-10553 - Vulnerability Analysis
HighCVSS: 8.7Last Updated: March 31, 2026
DELMIA Factory Resource Manager - Stored XSS
Published: March 31, 2026Updated: March 31, 2026Remote Exploitable
Overview
DELMIA Factory Resource Manager Release 3DEXPERIENCE R2023x through R2025x contains a stored XSS caused by improper input sanitization in Factory Resource Management, letting attackers execute arbitrary script code in users' browsers, exploit requires user interaction.
Severity & Score
Severity: High
CVSS Score: 8.7
Impact
Attackers can execute arbitrary scripts in users' browsers, potentially stealing session data or performing actions on behalf of the user.
Mitigation
Update to the latest available version beyond Release 3DEXPERIENCE R2025x.
Related Resources
Details
- CVE ID
- CVE-2025-10553
- Severity
- High
- CVSS Score
- 8.7
- Type
- stored_xss
- Status
- new
CWE
- CWE-79
CVSS Metrics
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N