CVE-2025-69259

A message unchecked NULL return value vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affected installations. Please note: authentication is not required in order to exploit this vulnerability...

The vulnerability of the ConvertFromJson method in the monitoring and security management tool Trend Micro Apex Central allows a attacker to execute arbitrary code in the context of NETWORK SERVICE.

The vulnerability of the ConvertFromJson method in the Trend Micro Apex Central security monitoring and management tool is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to execute arbitrary code in the context of NETWORK SERVICE...

CVE-2025-47865

CVE-2025-47865 : A Local File Inclusion vulnerability affects Trend Micro Apex Central widget in versions below 8.0.6955. The flaw exists in the getObjWGFServiceApiByApiName function and can lead to remote code execution on affected installations. Exploitation details in public disclosures indica...

Trend Micro Apex Central 安全漏洞

Trend Micro Apex Central is a web-based console from Trend Micro, Inc. A security vulnerability exists in Trend Micro Apex Central versions prior to 8.0.7007 that stems from improper deserialization and could lead to pre-authenticated remote code execution...