Trend Micro has warned that attackers target critical unauthenticated command injection vulnerabilities (CVE-2025-54948, CVE-2025-54987) in its on-premise Apex One endpoint security product. Vulnerability Details CVE-2025-54948 1. Vulnerability: Management Console Command Injection RCE Vulnerability 2. CVSS Score: 9.4 (Critical) 3. EPSS Score: 0.21% 4. Affected Products: Trend Micro Apex One (on-prem) versions 2019 and Management Server […]
The post Critical Trend Micro Apex One Bugs (CVE-2025-54948, CVE-2025-54987) Now Actively Exploited appeared first on SecPod Blog.