CVE-2025-30679

CVSS 6.5 MEDIUMEPSS 0.3%CWE-918

A Server-side Request Forgery (SSRF) vulnerability in Trend Micro Apex Central (on-premise) modOSCE component could allow an attacker to manipulate certain parameters leading to information disclosure on affected installations.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Productos afectados

Trend Micro, Inc. · Trend Micro Apex Central

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://success.trendmicro.com/en-US/solution/KA-0019355 https://www.zerodayinitiative.com/advisories/ZDI-25-237/