The U.S. CISA has added the Trend Micro Apex One CVE-2025-54948 flaw to its KEV list due to active exploits in the wild. Organizations are advised to apply available mitigations and patches to protect against remote code execution attacks. #TrendMicro #CVE202554948
Keypoints
- Two critical vulnerabilities in Trend Micro Apex One (CVE-2025-54948 and CVE-2025-54987) were actively exploited in the wild.
- Both flaws are remote code execution issues involving command injection in the Apex One Management Console.
- Trend Micro issued fixes for these vulnerabilities, with a full patch expected by mid-August 2025.
- Exploitation requires attacker access to the affected management console, emphasizing the importance of securing remote access.
- CISA mandates federal agencies to remediate these vulnerabilities by September 8, 2025, to reduce cyber risks.