Trendmicro Apex One vulnerabilities
173 known vulnerabilities affecting trendmicro/apex_one.
Total CVEs
173
CISA KEV
10
actively exploited
Public exploits
0
Exploited in wild
12
Severity breakdown
CRITICAL10HIGH116MEDIUM47
Vulnerabilities
Page 2 of 9
CVE-2025-49155P3HIGHCVSS 8.8fixed in 14.0.14492≥ 14.0.0.12994, < 14.0.0.140022025-06-17
CVE-2025-49155 [HIGH] CWE-427 CVE-2025-49155: An uncontrolled search path vulnerability in the Trend Micro Apex One Data Loss Prevention module co
An uncontrolled search path vulnerability in the Trend Micro Apex One Data Loss Prevention module could allow an attacker to inject malicious code leading to arbitrary code execution on affected installations.
nvd
CVE-2019-18188P3HIGHCVSS 7.5v20192019-10-28
CVE-2019-18188 [HIGH] CWE-77 CVE-2019-18188: Trend Micro Apex One could be exploited by an attacker utilizing a command injection vulnerability t
Trend Micro Apex One could be exploited by an attacker utilizing a command injection vulnerability to extract files from an arbitrary zip file to a specific folder on the Apex One server, which could potentially lead to remote code execution (RCE). The remote process execution is bound to the IUSR account, which has restricted permission and is unable
nvd
CVE-2022-41746P3CRITICALCVSS 9.1v20192022-10-10
CVE-2022-41746 [CRITICAL] CWE-425 CVE-2022-41746: A forced browsing vulnerability in Trend Micro Apex One could allow an attacker with access to the A
A forced browsing vulnerability in Trend Micro Apex One could allow an attacker with access to the Apex One console on affected installations to escalate privileges and modify certain agent groupings. Please note: an attacker must first obtain the ability to log onto the Apex One web console in order to exploit this vulnerability.
nvd
CVE-2020-8470P3HIGHCVSS 7.5v20192020-03-18
CVE-2020-8470 [HIGH] CVE-2020-8470: Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server
Trend Micro Apex One (2019), OfficeScan XG and Worry-Free Business Security (9.0, 9.5, 10.0) server contains a vulnerable service DLL file that could allow an attacker to delete any file on the server with SYSTEM level privileges. Authentication is not required to exploit this vulnerability.
nvd
CVE-2024-39753P3HIGHCVSS 7.5fixed in 14.0.13139v20192024-10-22
CVE-2024-39753 [HIGH] CWE-89 CVE-2024-39753: An modOSCE SQL Injection vulnerability in Trend Micro Apex One could allow a remote attacker to exec
An modOSCE SQL Injection vulnerability in Trend Micro Apex One could allow a remote attacker to execute arbitrary code on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2025-71212P3HIGHCVSS 7.8fixed in 14.0.0.14136fixed in 14.0.203152026-05-21
CVE-2025-71212 [HIGH] CWE-59 CVE-2025-71212: A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker
A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2021-25253P3HIGHCVSS 7.8v20192021-04-13
CVE-2021-25253 [HIGH] CWE-732 CVE-2021-25253: An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service
An improper access control vulnerability in Trend Micro Apex One, Trend Micro Apex One as a Service and OfficeScan XG SP1 on a resource used by the service could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to
nvd
CVE-2024-36305P3HIGHCVSS 7.8≥ 14.0, < 14.0.0.129802024-06-10
CVE-2024-36305 [HIGH] CWE-59 CVE-2024-36305: A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker t
A security agent link following vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2024-37289P3HIGHCVSS 7.8fixed in 14.0.13139≥ 14.0, < 14.0.0.129802024-06-10
CVE-2024-37289 [HIGH] CWE-284 CVE-2024-37289: An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to esc
An improper access control vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2025-71213P3HIGHCVSS 7.8fixed in 14.0.0.14136fixed in 14.0.203152026-05-21
CVE-2025-71213 [HIGH] CWE-346 CVE-2025-71213: An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to esc
An origin validation error vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2026-45208P3HIGHCVSS 7.8fixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-45208 [HIGH] CWE-367 CVE-2026-45208: A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker to
A time-of-check time-of-use vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2024-58104P3HIGHCVSS 7.8fixed in 14.0.14203fixed in 2019.131402025-03-25
CVE-2024-58104 [HIGH] CWE-269 CVE-2024-58104: A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could all
A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2024-58105P3HIGHCVSS 7.8fixed in 14.0.14203fixed in 2019.131402025-03-25
CVE-2024-58105 [HIGH] CVE-2024-58105: A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could all
A vulnerability in the Trend Micro Apex One Security Agent Plug-in User Interface Manager could allow a local attacker to bypass existing security and execute arbitrary code on affected installations.
This CVE address an addtional bypass not covered in CVE-2024-58104.
Please note: an attacker must first obtain the ability to execute low-privileged code on th
nvd
CVE-2023-47202P3HIGHCVSS 7.8fixed in 14.0.12737v20192024-01-23
CVE-2023-47202 [HIGH] CWE-552 CVE-2023-47202: A local file inclusion vulnerability on the Trend Micro Apex One management server could allow a loc
A local file inclusion vulnerability on the Trend Micro Apex One management server could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2024-52050P3HIGHCVSS 7.8fixed in 14.0.14203fixed in 2019.131402024-12-31
CVE-2024-52050 [HIGH] CWE-59 CVE-2024-52050: A LogServer arbitrary file creation vulnerability in Trend Micro Apex One could allow a local attack
A LogServer arbitrary file creation vulnerability in Trend Micro Apex One could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2026-34929P3HIGHCVSS 7.8fixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-34929 [HIGH] CVE-2026-34929: An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalat
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different inter-process communication mechanism.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to ex
nvd
CVE-2026-34927P3HIGHCVSS 7.8fixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-34927 [HIGH] CWE-346 CVE-2026-34927: An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalat
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.
nvd
CVE-2026-34928P3HIGHCVSS 7.8fixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-34928 [HIGH] CVE-2026-34928: An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalat
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different named pipe communication mechanism.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to explo
nvd
CVE-2026-45207P3HIGHCVSS 7.8fixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-45207 [HIGH] CVE-2026-45207: An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalat
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-45206 but exists in a different process protection communication mechanism.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order
nvd
CVE-2026-34930P3HIGHCVSS 7.8fixed in 14.0.0.17079fixed in 14.0.207312026-05-21
CVE-2026-34930 [HIGH] CVE-2026-34930: An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalat
An origin validation vulnerability in the Apex One/SEP agent could allow a local attacker to escalate privileges on affected installations. This is similar to CVE-2026-34927 but exists in a different process protection mechanism.
Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit thi
nvd