CVE-2025-69259

HIGH EPSS 69.5%
Published Jan 8, 20265mo ago · Modified Jun 17, 20261w ago
7.5 CVSS 3.1
High
Find Similar
Published Jan 8, 2026 5mo ago
Last Modified Jun 17, 2026 1w ago

Description

A message unchecked NULL return value vulnerability in Trend Micro Apex Central could allow a remote attacker to create a denial-of-service condition on affected installations. Please note: authentication is not required in order to exploit this vulnerability..

CVSS Details

Base Score
7.5
Exploitability
3.9
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
69.5% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 3

CWE-120
CWE-346
CWE-476 NULL Pointer Dereference Memory Safety

Affected Products 17

VendorProductVersionRange
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
trendmicroapex_central2019any
microsoftwindows*any

References 3

  • success.trendmicro.com https://success.trendmicro.com/en-US/solution/KA-0022071
    Vendor Advisory
  • success.trendmicro.com https://success.trendmicro.com/ja-JP/solution/KA-0022081
    Vendor Advisory
  • tenable.com https://www.tenable.com/security/research/tra-2026-01
    ExploitThird Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.