CVEFinder.io

CVE-2025-71211

β›” critical
πŸ” Scan for this CVE
Summary

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable. Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via a researcher through the Zero Day Initiative. The SaaS versions of the product have already been mitigate

Description

A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects a different executable.

Please note: although this vulnerability carries a technical critical CVSS rating, this was reported via responsible disclosure via a researcher through the Zero Day Initiative. The SaaS versions of the product have already been mitigated and no customer action required.

For this particular vulnerability, an attacker must have access to the Trend Micro Apex One Management Console, so customers that have their consoleοΏ½s IP address exposed externally should consider mitigating factors such as source restrictions if not already applied.

CVSS Score
9.8
Critical
EPSS Score
0.6
Exploit Probability
Published Date
2026-05-21
First Seen: 2026-05-22
πŸ“Š Relative Risk Intelligence

This CVE is Very High Risk - more severe than 90.5% of all 328,009 vulnerabilities in our database.

#31,168
Top 10% most severe
Severity Percentile
🎯 CISA SSVC Assessment Updated: May 21, 2026
πŸ” Exploitation Status
None
No known exploits
βš™οΈ Automatable
YES
Can be exploited automatically
πŸ’₯ Technical Impact
Total
Complete system compromise possible
SSVC data provided by CISA
Last Modified 2026-05-22
Source NVD πŸ”—
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE IDs (Weakness Types)
CWE-22

πŸ“¦ Affected Products 2

Vendor Product Status Affected Versions
trendmicro apex_one Affected
< 14.0.0.14136
trendmicro apex_one Affected
< 14.0.20315

πŸ”— References 2

https://success.trendmicro.com/en-US/solution/KA-002...
Vendor Advisory
https://www.zerodayinitiative.com/advisories/ZDI-26-...
Third Party Advisory

πŸ”— Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2025-71210 β›” critical 9.8 0.6 A vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code an... 2026-05-21
CVE-2025-71212 ⚠️ high 7.8 0.0 A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalate privileg... 2026-05-21
CVE-2025-71213 ⚠️ high 7.8 0.0 An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on ... 2026-05-21
CVE-2025-71214 ⚠️ high 7.8 0.0 An origin validation error vulnerability in the Trend Micro Apex One (mac) agent iCore service could allow a local attac... 2026-05-21
CVE-2025-71215 ⚠️ high 7.0 0.0 A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent iCore service signature verification c... 2026-05-21
CVE-2025-71216 ⚠️ high 7.8 0.0 A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent cache mechanism could allow a local at... 2026-05-21
These CVEs affect the same products