High Threat Security Alert (A26-03-01): Multiple Vulnerabilities in Trend Micro Products


 

Published on: 02 March 2026

Description:

Trend Micro has published a security advisory to address multiple vulnerabilities in Apex One and Trend Vision One Endpoint. The details of the security update can be found at:
https://success.trendmicro.com/en-US/solution/KA-0022458

Reports indicated that a remote code execution vulnerability (CVE-2025-54948) is being exploited in the wild. You are advised to take immediate action to patch your affected systems to mitigate the elevated risk of cyber attacks.

 

Affected Systems:

  • Trend Micro Apex One - 2019 (On-Premises)
  • Trend Micro Apex One as a Service (SaaS)
  • Trend Vision One Endpoint - Standard Endpoint Protection (SaaS)

 

Impact:

Successful exploitation of the vulnerabilities could lead to remote code execution or elevation of privilege on an affected system.

 

Recommendation:

Patches for affected software are available. System administrators of affected systems should follow the recommendations provided by the software vendor and take immediate actions to mitigate the risk.

 

More Information:

  • https://success.trendmicro.com/en-US/solution/KA-0022458
  • https://www.hkcert.org/security-bulletin/trend-micro-apex-one-multiple-vulnerabilities_20260227
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54948
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-54987
  • https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-71210 (to CVE-2025-71217)


Tag: Trend Micro , Apex One , Trend Vision One Endpoint
Tags