CVE-2025-54987

August 5, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-54987
Type cve
Published 2025-08-05T13:00:38.698Z
Modified 2025-08-05T13:00:38.698Z

Product Information

Vendor Trend Micro, Inc.
Product Trend Micro Apex One
Version 2019 (14.0)

CVSS Information

Base Score 9.4 (CRITICAL)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H

AI Analysis

AI Description A critical vulnerability in Trend Micro Apex One allows remote attackers to execute commands without authentication, potentially leading to system compromise.
AI Severity Critical
AI Vendor Trend Micro, Inc.
AI Product Trend Micro Apex One
AI Version 2019 (14.0)

Affected Products

  • Trend Micro, Inc. Trend Micro Apex One 2019 (14.0)

Additional Information

CWE List CWE-78
Source trendmicro

Description

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is essentially the same as CVE-2025-54948 but targets a different CPU architecture.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.