Trend Micro Products Multiple Vulnerabilities

Release Date: 12 Jun 2025

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

Multiple vulnerabilities were identified in Trend Micro Products. An attacker could exploit some of these vulnerabilities to trigger elevation of privilege, remote code execution and data manipulation on the targeted system.

 

---

Impact

• Elevation of Privilege
• Remote Code Execution
• Data Manipulation

---

System / Technologies affected

• Trend Micro Apex One - 2019 (On-prem)
• Trend Micro Apex One as a Service (SaaS)
• Trend Micro Apex Central - 2019 (On-prem)
• Trend Micro Apex Central as a Service (SaaS)

---

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

 

Apply fixes issued by the vendor:

• https://success.trendmicro.com/en-US/solution/KA-0019917
• https://success.trendmicro.com/en-US/solution/KA-0019926

---

Vulnerability Identifier

• CVE-2025-49154
• CVE-2025-49155
• CVE-2025-49156
• CVE-2025-49157
• CVE-2025-49158
• CVE-2025-49219
• CVE-2025-49220

---

Source

• Trend Micro

---

Related Link

• https://success.trendmicro.com/en-US/solution/KA-0019917
• https://success.trendmicro.com/en-US/solution/KA-0019926