Trendmicro

Apex Central

35 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2025-69260

Exploit
  • EPSS 0.26%
  • Veröffentlicht 08.01.2026 12:50:55
  • Zuletzt bearbeitet 15.01.2026 19:11:14

A message out-of-bounds read vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affected installations. Please note: authentication is not required in order to exploit this vulnerabil...

7.5

CVE-2025-69259

Exploit
  • EPSS 0.3%
  • Veröffentlicht 08.01.2026 12:50:43
  • Zuletzt bearbeitet 15.01.2026 19:14:24

A message unchecked NULL return value vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affected installations. Please note: authentication is not required in order to exploit this v...

9.8

CVE-2025-69258

Exploit
  • EPSS 0.15%
  • Veröffentlicht 08.01.2026 12:50:25
  • Zuletzt bearbeitet 15.01.2026 19:18:37

A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated remote attacker to load an attacker-controlled DLL into a key executable, leading to execution of attacker-supplied code under the context of SYSTEM on affected ...

7.1

CVE-2025-30680

  • EPSS 0.06%
  • Veröffentlicht 17.06.2025 19:56:23
  • Zuletzt bearbeitet 08.09.2025 21:04:31

A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (SaaS) could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations. Please note: this vulnerability only affe...

7.5

CVE-2025-30679

  • EPSS 0.04%
  • Veröffentlicht 17.06.2025 19:56:11
  • Zuletzt bearbeitet 08.09.2025 21:04:42

A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (on-premise) modOSCE component could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations.

7.5

CVE-2025-30678

  • EPSS 0.04%
  • Veröffentlicht 17.06.2025 19:56:01
  • Zuletzt bearbeitet 08.09.2025 21:04:45

A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (on-premise) modTMSM component could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations.

9.8

CVE-2025-49220

  • EPSS 6.3%
  • Veröffentlicht 17.06.2025 17:43:23
  • Zuletzt bearbeitet 08.09.2025 21:06:21

An insecure deserialization operation in Trend Micro Apex Central below version 8.0.7007 could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49219 but is in a differe...

9.8

CVE-2025-49219

  • EPSS 5.83%
  • Veröffentlicht 17.06.2025 17:43:12
  • Zuletzt bearbeitet 08.09.2025 21:06:23

An insecure deserialization operation in Trend Micro Apex Central below versions 8.0.7007 could lead to a pre-authentication remote code execution on affected installations. Note that this vulnerability is similar to CVE-2025-49220 but is in a differ...

9.8

CVE-2025-47867

  • EPSS 0.51%
  • Veröffentlicht 17.06.2025 17:42:55
  • Zuletzt bearbeitet 08.09.2025 21:04:50

A Local File Inclusion vulnerability in a Trend Micro Apex Central widget in versions below 8.0.6955 could allow an attacker to include arbitrary files to execute as PHP code and lead to remote code execution on affected installations.

7.5

CVE-2025-47866

  • EPSS 0.06%
  • Veröffentlicht 17.06.2025 17:42:42
  • Zuletzt bearbeitet 08.09.2025 21:04:48

An unrestricted file upload vulnerability in a Trend Micro Apex Central widget below version 8.0.6955 could allow an attacker to upload arbitrary files on affected installations.