PT-2025-25237 · Trend Micro · Trend Micro Apex One

Xavier Danest

Publicado

2024-07-12

Atualizado

2025-09-09

CVE-2025-49155

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Trend Micro Apex One (affected versions not specified)

Description The issue is related to an uncontrolled search path vulnerability in the Data Loss Prevention module, which could allow an attacker to inject malicious code. This could lead to arbitrary code execution on affected installations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Uncontrolled Search Path Element

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-427

Identificadores relacionados

BDU:2025-08894

CVE-2025-49155

ZDI-25-362

Produtos afetados

Trend Micro Apex One

PT-2025-25237 · Trend Micro · Trend Micro Apex One

CVE-2025-49155

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 11