Trend Micro Patches Critical Code Execution Flaw in Apex Central
securityweekTenable has released PoC code and technical details after the vendor announced the availability of patches for three vulnerabilities.
Trend Micro this week announced patches for three vulnerabilities affecting its Apex Central product.
Apex Central is a console designed for managing Trend Micro products and services. Researchers at Tenable discovered in August 2025 that the product is affected by three vulnerabilities that can be exploited for remote code execution or DoS attacks.
According to Trend Micro’s advisory, the flaws impact the on-premises version of Apex Central, and they have been fixed with the release of Critical Patch build 7190.
The most serious of the flaws, tracked as CVE-2025-69258 and assigned a critical severity rating, is a LoadLibraryEX issue that can allow an unauthenticated, remote attacker to load a malicious DLL file into a key executable, which results in the attacker’s code being executed with System privileges.
The remaining ...
Copyright of this story solely belongs to securityweek . To see the full text click HERE