Trend Micro Apex Central Flaw Enable Remote Code Execution Attacks - Cybernoz - Cybersecurity News

Trend Micro patches critical flaws in its Apex Central software

Security company Trend Micro has been compelled to issue a patch for its own Apex Central software management tool after vulnerability management platform Tenable identified several security flaws. The bugs affect all versions of Apex Central (on-premises) earlier than build 7190. In a security bulletin, Trend Micro said of the most severe flaw, rated 9.8, “A LoadLibraryEX vulnerability in Trend Micro Apex Central could allow an unauthenticated …

Trend Micro Apex Central Flaw Enable Remote Code Execution Attacks - Cybernoz - Cybersecurity News

Trend Micro has issued a critical security update for Apex Central to address multiple remotely exploitable vulnerabilities, including a bug that allows unauthenticated attackers to execute code with SYSTEM-level privileges.  Organizations running vulnerable builds are urged to patch immediately to avoid both remote code execution and denial-of-service risks.​  Critical flaws in Apex Central  The update targets Apex Central for Windows and affec…

A Zero-Day in the Control Plane Forces Enterprises to Rethink Trust in Security Software

A flaw buried deep inside enterprise security tooling is once again forcing defenders to confront an uncomfortable truth: the systems designed to protect the network can also become its most dangerous point of failure.This week, Trend Micro issued emergency updates for its on-premises Apex Central management console after researchers disclosed three serious vulnerabilities — including a critical zero-day that allows unauthenticated attackers to …