Trend Micro Products Multiple Vulnerabilities
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Trend Micro Products. An attacker could exploit some of these vulnerabilities to trigger remote code execution on the targeted system.
Note:
CVE-2025-54948 and CVE-2025-54987 are being scattered exploited. This vulnerability allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations. Trend Micro has observed as least one instance of an attempt to actively exploit one of these vulnerabilities in the wild. Hence, the risk level is rated as Medium Risk.
Impact
- Remote Code Execution
System / Technologies affected
- Trend Micro Apex One - 2019 (On-prem)
- Trend Micro Apex One - Management Server Version 14039 and below
- Trend Micro Apex One as a Service (SaaS)
- Trend Vision One™ Endpoint Security - Standard Endpoint Protection
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
Apply fixes issued by the vendor:
沒有留言:
發佈留言