Trend Micro alerted customers about critical vulnerabilities in its Apex One 2019 endpoint security platform, identified as CVE-2025-54948 and CVE-2025-54987, both rated 9.4 on the CVSS scale. These flaws allow remote attackers to exploit the management console to execute commands on affected machines. A patch isn't expected until mid-August. A temporary mitigation is available but disables the Remote Install Agent function, requiring alternate deployment methods. Trend Micro and experts recommend restricting management console access to authorized administrators as a critical security measure.
Remote attackers with access to the management console can exploit the vulnerabilities to upload malicious code and execute commands on the affected machines.
Management consoles and interfaces should be restricted to authorized and trusted administrators only.
Trend Micro has provided a mitigation that will prevent exploitation, but warns that it will disable the ability for administrators to utilize the Remote Install Agent function.
Restricting access to management interfaces on edge devices is a crucial first line of defense.
Collection
[
|
...
]