Overview

Trend Micro has released updates addressing critical vulnerabilities in three products. A remote attacker can exploit these vulnerabilities to execute remote code.

Description

UniFi Console, Endpoint Encryption, and Apex Central are affected by critical vulnerabilities tracked as CVE-2025-23116, CVE-2025-49216, CVE-2025-49213, CVE-2025-49220, and CVE-2025-49219 with CVSS scores of 9.6 and 9.8. The vulnerabilities result from the lack of authentication before allowing access to functionality, improper implementation of an authentication algorithm, lack of proper validation of user-supplied data, flaws in the implementation of the ConvertFromJson method, and issues in the implementation of the GetReportDetailView method. Successful exploitation of these vulnerabilities may allow an unauthorized attacker to execute arbitrary code on the affected system.

Impact

Successful exploitation of these vulnerabilities may allow the attacker to take control of the affected system.

Solution

Vendors of the products have released security patches for these vulnerabilities. Users and administrators are encouraged to apply necessary updates.

References

• 1. https://www.zerodayinitiative.com/advisories/ZDI-25-378/
• 2. https://www.zerodayinitiative.com/advisories/ZDI-25-373/
• 3. https://www.zerodayinitiative.com/advisories/ZDI-25-370/
• 4. https://www.zerodayinitiative.com/advisories/ZDI-25-367/
• 5. https://www.zerodayinitiative.com/advisories/ZDI-25-366/