Trend Micro · Trend Micro Worry-Free Business Security Services · CVE-2025-53378
Name of the Vulnerable Software and Affected Versions:
Trend Micro Worry-Free Business Security Services (WFBSS) agent (affected versions not specified)
Description:
A missing authentication issue in the Trend Micro Worry-Free Business Security Services (WFBSS) agent could allow an unauthenticated attacker to remotely take control of the agent on affected installations. This issue only affected the SaaS client version of WFBSS; the on-premise version of Worry-Free Business Security was not affected.
Recommendations:
Ensure WFBSS agents are on the regular SaaS maintenance deployment schedule.