7.5
CVE-2025-30678
- EPSS 0.03%
- Published 17.06.2025 19:56:01
- Last modified 08.09.2025 21:04:45
- Source security@trendmicro.com
- Teams watchlist Login
- Open Login
A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (on-premise) modTMSM component could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users. Login
Data is provided by the National Vulnerability Database (NVD)
Trendmicro ≫ Apex Central Version2019 Update- SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_3752 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_5158 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6016 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6288 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6394 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6481 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6511 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6571 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6658 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6660 SwEdition-
Trendmicro ≫ Apex Central Version2019 Updatebuild_6890 SwEdition-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.053 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| security@trendmicro.com | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
|
CWE-918 Server-Side Request Forgery (SSRF)
The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.