Out-of-Bounds Read Vulnerability in Trend Micro Apex Central
CVE-2025-69260

7.5HIGH

Key Information:

Vendor

Trend Micro
Status
Trend Micro Apex Central
Vendor
CVE Published:
8 January 2026

Badges

📰 News Worthy

What is CVE-2025-69260?

A message out-of-bounds read vulnerability in Trend Micro Apex Central enables remote attackers to potentially trigger a denial-of-service condition. This issue arises from improper handling of messages, allowing exploitation without the need for authentication. As a result, affected installations may become unresponsive, impacting availability for users. Organizations using Trend Micro Apex Central are urged to assess their systems and apply necessary updates or mitigation strategies.

Affected Version(s)

Trend Micro Apex Central 2019 (14.0)

News Articles

favicon imageSecurity Affairs

Trend Micro fixed a remote code execution in Apex Central

Trend Micro fixed three Apex Central flaws discovered by Tenable that could allow remote code execution or denial-of-service attacks.

1 day ago

References

https://success.trendmicro.com/en-US/solution/KA-0022071
https://success.trendmicro.com/ja-JP/solution/KA-0022081
https://www.tenable.com/security/research/tra-2026-01

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 📰

    First article discovered by Security Affairs

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-69260 : Out-of-Bounds Read Vulnerability in Trend Micro Apex Central