Local Privilege Escalation Vulnerability in Trend Micro Apex One (mac) Agent
CVE-2025-71215

7HIGH

Key Information:

Vendor: Trend Micro
Status: Trendai Apex One (mac)
Vendor: CVE Published:; 21 May 2026

🔔 Create Trend Micro Vulnerability Alert

What is CVE-2025-71215?

A time-of-check time-of-use vulnerability in the Trend Micro Apex One (mac) agent's iCore service signature verification presents a risk of local privilege escalation. This vulnerability requires an attacker to have the capability to execute low-privileged code on the target machine, potentially allowing them to gain elevated access rights. Although addressed through active updates in mid to late 2025, it remains essential for users to remain vigilant and ensure that all security patches are applied promptly.

Affected Version(s)

TrendAI Apex One (Mac) NA

References

https://success.trendmicro.com/en-US/solution/KA-0022458

https://www.zerodayinitiative.com/advisories/ZDI-26-141/

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 21, 2026
Vulnerability Reserved
Feb 11, 2026

CVE-2025-71215 Data

JSON