CVE-2025-30678

A Server-side Request Forgery SSRF vulnerability in Trend Micro Apex Central on-premise modTMSM component could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations...

Trend Micro Apex Central 代码问题漏洞

Trend Micro Apex Central is a web-based console from Trend Micro, Inc. A security vulnerability exists in Trend Micro Apex Central that stems from the modTMSM component being susceptible to a server-side request forgery attack, which could lead to information disclosure...

Trend Micro Apex Central modTMSM Server-Side Request Forgery Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Trend Micro Apex Central. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within t...

The vulnerability of the modTMSM component in the Trend Micro Apex Central security monitoring and management tool allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the modTMSM component in the Trend Micro Apex Central security management and monitoring tool is related to insufficient checking of incoming requests. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

PT-2024-41131 · Trend Micro · Trend Micro Apex Central

Name of the Vulnerable Software and Affected Versions: Trend Micro Apex Central affected versions not specified Description: The issue is related to insufficient validation of incoming requests in the modTMSM component of Trend Micro Apex Central, a security monitoring and management tool. This c...