CVE-2025-54948

August 5, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-54948
Type cve
Published 2025-08-05T13:00:19.905Z
Modified 2025-08-05T13:00:19.905Z

Product Information

Vendor Trend Micro, Inc.
Product Trend Micro Apex One
Version 2019 (14.0)

CVSS Information

Base Score 9.4 (CRITICAL)
Attack Vector CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H

AI Analysis

AI Description A vulnerability in Trend Micro Apex One allows remote attackers to upload malicious code and execute commands without authentication. This could lead to significant system compromise. The issue is critical due to the high CVSS score and the product’s widespread use in enterprise security.
AI Severity Critical
AI Vendor Trend Micro, Inc.
AI Product Trend Micro Apex One
AI Version 2019 (14.0)

Affected Products

  • Trend Micro, Inc. Trend Micro Apex One 2019 (14.0)

Additional Information

CWE List CWE-78
Source trendmicro

Description

A vulnerability in Trend Micro Apex One (on-premise) management console could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.