{"id":218041,"date":"2026-02-26T16:44:00","date_gmt":"2026-02-26T21:44:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/02\/26\/trend-micro-fixes-two-critical-flaws-in-apex-one\/"},"modified":"2026-02-27T07:55:18","modified_gmt":"2026-02-27T12:55:18","slug":"trend-micro-fixes-two-critical-flaws-in-apex-one","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/02\/26\/trend-micro-fixes-two-critical-flaws-in-apex-one\/","title":{"rendered":"Trend Micro fixes two critical flaws in Apex One"},"content":{"rendered":"<p><a href=\"https:\/\/securityaffairs.com\/188572\/security\/trend-micro-fixes-two-critical-flaws-in-apex-one.html\">Trend Micro fixes two critical flaws in Apex One<\/a><\/p>\n<p><a href=\"https:\/\/securityaffairs.com\/188572\/security\/trend-micro-fixes-two-critical-flaws-in-apex-one.html\">https:\/\/securityaffairs.com\/188572\/security\/trend-micro-fixes-two-critical-flaws-in-apex-one.html<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-02-26 16:44:00<\/a><\/p>\n<p>Source Domain: <a href=\"securityaffairs.com\">securityaffairs.com<\/a><\/p>\n<p><h2>Trend Micro fixes two critical flaws in Apex One<\/h2>\n<\/p>\n<p>\t\t\t\t\t\t\t<span> Pierluigi Paganini<\/span><br \/>\n\t\t\t\t\t\t\t<span><img decoding=\"async\" src=\"https:\/\/securityaffairs.com\/wp-content\/themes\/security_affairs\/images\/clock-icon.svg\" alt=\"\"\/> February 26, 2026<\/span><\/p>\n<p>\t\t\t\t\t\t<img decoding=\"async\" class=\"img-fluid mb-4\" src=\"https:\/\/i0.wp.com\/securityaffairs.com\/wp-content\/uploads\/2012\/10\/TrendMicro.jpg?fit=285%2C177&#038;ssl=1\" alt=\"\"\/><\/p>\n<h2 class=\"wp-block-heading\">Trend Micro fixed two critical Apex One flaws enabling remote code execution on vulnerable Windows systems and urged immediate updates.<\/h2>\n<p>Trend Micro has addressed two critical vulnerabilities in Apex One that could allow attackers to achieve remote code execution on affected Windows systems. The company released security updates and strongly urged customers to apply the patches promptly to prevent potential exploitation and protect their environments from compromise.<\/p>\n<p>Trend Micro Apex One\u00a0is an all-in-one advanced endpoint security solution. It provides ransomware protection, zero-day threat defense, EDR, predictive machine learning, DLP, and virtual patching via a single agent. <\/p>\n<p>The first vulnerability addressed by the security firm is a Console Directory Traversal Remote Code Execution issue tracked as CVE-2025-71210 (CVSS score of 9.8).<\/p>\n<p>\u201cA vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations.\u201d reads the <strong>advisory<\/strong>. \u201cFor this particular vulnerability, an attacker must have access to the Trend Micro Apex One Management Console, so customers that have their console\u2019s IP address exposed externally should consider mitigating factors such as source restrictions if not already applied.\u201d<\/p>\n<p>The second vulnerability fixed by the company is a Console Directory Traversal Remote Code Execution issue, tracked as CVE-2025-71211 (CVSS score of 9.8). The report states that the vulnerability is similar in scope to CVE-2025-71210 but impacts a different executable.<\/p>\n<p>\u201cA vulnerability in the Trend Micro Apex One management console could allow a remote attacker to upload malicious code and execute commands on affected installations. This vulnerability is similar in scope to CVE-2025-71210 but affects&#8230;<\/p>\n<p><a href=\"https:\/\/securityaffairs.com\/188572\/security\/trend-micro-fixes-two-critical-flaws-in-apex-one.html\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Trend Micro fixes two critical flaws in Apex One https:\/\/securityaffairs.com\/188572\/security\/trend-micro-fixes-two-critical-flaws-in-apex-one.html Publish Date: 2026-02-26 16:44:00 Source&#8230;<\/p>\n","protected":false},"author":1,"featured_media":218042,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/securityaffairs.com\/wp-content\/uploads\/2012\/10\/TrendMicro.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[27],"class_list":["post-218041","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/218041"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=218041"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/218041\/revisions"}],"predecessor-version":[{"id":218043,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/218041\/revisions\/218043"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/218042"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=218041"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=218041"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=218041"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}