CVE-2025-71217
EUVD-2025-20991521.05.2026, 14:16
An origin validation error vulnerability in the Trend Micro Apex One (mac) agent self-protection mechanism could allow a local attacker to escalate privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The following information is provided as informational only for CVE references, as these were addressed already via ActiveUpdate/SaaS updates in mid to late 2025 (SaaS 2507 & 2005 Yearly Release).Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| trendmicro | apex_one | - |
| trendmicro | apex_one | - |
𝑥
= Vulnerable software versions
Common Weakness Enumeration