CVE-2025-49212

Name of the Vulnerable Software and Affected Versions Trend Micro Endpoint Encryption versions prior to 6.0.0.4013

Description An insecure deserialization operation in the Trend Micro Endpoint Encryption PolicyServer could lead to a pre-authentication remote code execution on affected installations. The issue is related to the deserialization of untrusted data, which can be exploited to execute code remotely without authentication. This vulnerability is actively being exploited.

Recommendations To resolve the issue, update Trend Micro Endpoint Encryption to version 6.0.0.4013 or later. As a temporary workaround, consider restricting access to the PolicyServer to minimize the risk of exploitation. Avoid using the DeserializeFromBase64String method in the affected PolicyServer until the issue is resolved.