A critical remote code execution vulnerability in the Trend Micro Apex One management console permits unauthorized command execution.

Similar to CVE-2025-71210, this flaw affects a different executable within the management console, enabling remote code execution via malicious file uploads. It requires network access to the console to exploit.

With a CVSS score of 9.8, this vulnerability allows for full system compromise. If exploited, an attacker could manipulate security policies, exfiltrate sensitive data, or deploy malware, effectively nullifying the protection provided by the security software itself.

Immediate Action: Apply the latest vendor-supplied patches for all on-premises Apex One installations.

Proactive Monitoring: Audit access logs for the management console and investigate any suspicious file upload activities.

Compensating Controls: Restrict access to the management console to authorized administrative subnets and consider using a VPN to tunnel management traffic.

Public Exploit Available: No

This vulnerability must be addressed immediately alongside CVE-2025-71210. Organizations should verify their security posture by ensuring all management consoles are isolated from untrusted networks.