Apex One Security Vulnerabilities and Issues — Apex One CVE List

Lucene search

TrendmicroApex One

8 matches found

CVE•added 2025/08/05 1:15 p.m.•95 views

CVE-2025-54948

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations.

9.8CVSS7AI score0.19301EPSS

In wild

CVE•added 2025/03/25 6:15 p.m.•50 views

CVE-2024-58105

A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations. This CVE address an addtional bypass not covered in CVE-2024-58104. Please note: an attacker must ...

7.8CVSS7.8AI score0.00011EPSS

CVE•added 2025/03/25 6:15 p.m.•47 views

CVE-2024-58104

A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the targe...

7.8CVSS7.8AI score0.00011EPSS

CVE•added 2025/08/05 1:15 p.m.•39 views

CVE-2025-54987

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is essentially the same as CVE-2025-54948 but targets a different CPU architecture.

9.8CVSS7AI score0.19301EPSS

CVE•added 2025/06/17 7:15 p.m.•13 views

CVE-2025-49155

An uncontrolled search path vulnerability in the Trend Micro Apex One Data Loss Prevention module could allow an attacker to inject malicious code leading to arbitrary code execution on affected installations.

8.8CVSS8.9AI score0.00066EPSS

CVE•added 2025/06/17 7:15 p.m.•8 views

CVE-2025-49156

A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.

7.8CVSS7.1AI score0.00046EPSS

CVE•added 2025/06/17 7:15 p.m.•7 views

CVE-2025-49157

A link following vulnerability in the Trend Micro Apex One Damage Cleanup Engine could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulne...

7.8CVSS7.8AI score0.00046EPSS

CVE•added 2025/06/17 7:15 p.m.•6 views

CVE-2025-49158

An uncontrolled search path vulnerability in the Trend Micro Apex One security agent could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this v...

7.8CVSS6.8AI score0.00017EPSS