{"id":38822,"date":"2025-08-06T16:56:19","date_gmt":"2025-08-06T14:56:19","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=38822"},"modified":"2025-08-06T16:56:19","modified_gmt":"2025-08-06T14:56:19","slug":"critical-vulnerabilities-cve-2025-54948-cve-2025-54987-in-trend-micro-apex-one","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2025\/08\/06\/critical-vulnerabilities-cve-2025-54948-cve-2025-54987-in-trend-micro-apex-one\/","title":{"rendered":"Critical vulnerabilities (CVE-2025-54948, CVE-2025-54987) in Trend Micro Apex One"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" title=\"Sicherheit (Pexels, allgemeine Nutzung)\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/04\/Sicherheit_klein.jpg\" alt=\"Sicherheit (Pexels, allgemeine Nutzung)\" width=\"200\" align=\"left\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2025\/08\/06\/kritische-schwachstellen-cve-2025-54948-cve-2025-54987-in-trend-micro-apex-one\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]Brief information for administrators who use the Trend Micro Apex One security solution under Windows. The manufacturer has issued a security notice about a critical vulnerability that probably affects all versions and is also under attack. There is a Fix, and an update is advised for Mid August 2025.<\/p>\n<p><!--more--><\/p>\n<h2>\u00a0Trend Micro security bulletin<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg04.met.vgwort.de\/na\/5db32e803b1a4e17849411b60eb61acb\" alt=\"\" width=\"1\" height=\"1\" \/>Trend Micro has published the security alert <a href=\"https:\/\/success.trendmicro.com\/en-US\/solution\/KA-0020652\" target=\"_blank\" rel=\"noopener\">ITW CRITICAL SECURITY BULLETIN: Trend Micro Apex One\u2122 (On-Premise) Management Console Command Injection RCE Vulnerabilities<\/a> on August 6, 2025 (thanks to the readers for the hints). In Apex One 2019 and Apex One All there are the two vulnerabilities CVE-2025-54948 and CVE-2025-54987, which are classified as critical and allow Remote Code Execution (RCE).<\/p>\n<ul>\n<li>CVE-2025-54948: Is a Management Console Command Injection RCE vulnerability that is classified as critical with a CVSSv3.1 score of 9.4.<\/li>\n<li>CVE-2025-54987: Is also a Management Console Command Injection RCE vulnerability, which is also classified as critical with a CVSSv3.1 score of 9.4.<\/li>\n<\/ul>\n<p>To exploit these vulnerabilities, an attacker must usually have access (physically or remotely) to a vulnerable computer. Customers whose IP address is externally accessible to the console should therefore consider risk mitigation measures. Trend Micro has observed at least one case in which an attempt was made to actively exploit one of these vulnerabilities. The following products for Windows are affected:<\/p>\n<ul>\n<li>Trend Micro Apex One 2019 (on-prem) till Management Server Version 14039<\/li>\n<li>Trend Micro Apex One as a Service<\/li>\n<li>Trend Vision One\u2122 Endpoint und Security &#8211; Standard Endpoint<br \/>\nProtection<\/li>\n<\/ul>\n<p>The <a href=\"https:\/\/powerbox-na-file.trend.org\/SFDC\/DownloadFile_iv.php?jsonInfo=%7B%22Query%22%3A%228IHVaYN3YHAuB5U2OHbHErcrAZxykPDfhfU2VmJ9CFnF186kT61900q0%2FjEtInS8DrPVZJ8g72f06LDJ0%2BlP17t%2BDSLx1WfHl8zbxnlKDTn%2Fb3Glf5uJiT72Ac8dhN3nJ6pxXEJ5FoXVOsmMBXJsKI8rU23oC7ZqkKqFoT9bR%2BtZ0Vf0FQc7Jt4cROhyykO9Rx%2FdsTKE%2FKc4i5itR0vcGlWNmQAQTIywTJn8MbkuWVat4rLE0Prq9Rn4VX6jGrgLuyTe2Zzcc0kOtomkCMYaAeaJaObQ9qbeiY1FMRrE4Hc%3D%22%2C%22iv%22%3A%22481728fdb838e6781de8def025559d40%22%7D\" target=\"_blank\" rel=\"noopener\">FixTool_Aug2025<\/a><\/p>\n<p>is available for Trend Micro Apex One (on-premises version) to temporarily close the vulnerabilities. The fix listed in this bulletin is a short-term workaround that, according to Trend Micro, provides full protection against known exploits. However, the fix disables the ability for administrators to use the Remote Install Agent feature to deploy agents via the Trend Micro Apex One Management Console.<\/p>\n<p>A critical patch for the Trend Micro Apex One Management Console is expected to be released in mid-August 2025. Trend Micro will update this article at that time. Trend Micro strongly recommends that customers update to the latest versions as soon as possible.<\/p>\n<p>For Trend Micro Apex One as a Service*, Trend Vision One\u2122 Endpoint and Security &#8211; Standard Endpoint Protection, the fix to close the vulnerabilities was implemented on July 31, 2025.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Brief information for administrators who use the Trend Micro Apex One security solution under Windows. The manufacturer has issued a security notice about a critical vulnerability that probably affects all versions and is also under attack. There is a Fix, &hellip; <a href=\"https:\/\/borncity.com\/win\/2025\/08\/06\/critical-vulnerabilities-cve-2025-54948-cve-2025-54987-in-trend-micro-apex-one\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,1547,2],"tags":[69,1544,1671,195],"class_list":["post-38822","post","type-post","status-publish","format-standard","hentry","category-security","category-software","category-windows","tag-security","tag-software","tag-trend-micro","tag-update"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/38822","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=38822"}],"version-history":[{"count":1,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/38822\/revisions"}],"predecessor-version":[{"id":38823,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/38822\/revisions\/38823"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=38822"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=38822"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=38822"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}