📦 Apex Central

An unauthenticated remote attacker can exploit a LoadLibraryEX vulnerability in Trend Micro Apex Central to load malicious DLLs, leading to arbitrary code execution with SYSTEM privileges. This affect...

CVE-2022-26871 is a critical arbitrary file upload vulnerability in Trend Micro Apex Central that allows unauthenticated remote attackers to upload malicious files to the server. This can lead to remo...

A NULL pointer dereference vulnerability in Trend Micro Apex Central allows remote attackers to cause denial-of-service without authentication. This affects organizations using vulnerable versions of ...

An out-of-bounds read vulnerability in Trend Micro Apex Central allows remote attackers to cause denial-of-service conditions without authentication. This affects organizations using vulnerable versio...

A Server-Side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (SaaS) allows attackers to manipulate parameters to access internal systems and disclose sensitive information. Only SaaS...

A local file inclusion vulnerability in Trend Micro Apex Central widgets could allow remote attackers to execute arbitrary code on affected systems. This vulnerability requires both valid credentials ...

A post-authenticated server-side request forgery (SSRF) vulnerability in Trend Micro Apex Central allows an authenticated attacker to make requests to internal or local services from the server. This ...

This vulnerability allows authenticated users in Trend Micro Apex Central to perform SQL injection attacks that could lead to remote code execution. Organizations using vulnerable versions of Trend Mi...

A Server-Side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central's modOSCE component allows attackers to manipulate parameters to access internal systems and disclose sensitive informati...