CVE-2025-54948

⚠ KEVEPSS 13.9%

Trend Micro Apex One OS Command Injection Vulnerability

Added to CISA KEV: 8/18/2025

Description

Trend Micro Apex One Management Console (on-premise) contains an OS command injection vulnerability that could allow a pre-authenticated remote attacker to upload malicious code and execute commands on affected installations.

Affected packages (0)

No package mapping in OSV.