TRENDAI , the renamed Trend Micro business, announced patches for several critical and high‑severity vulnerabilities in the Windows and macOS versions of the Apex One endpoint security solution. A total of eight issues were addressed, including two critical flaws that could allow a remote attacker to upload malicious code and execute commands on affected installations, tracked as CVE-2025-71210 and CVE-2025-71211 and impacting the Apex One management console.
The remaining high‑severity vulnerabilities, numbered CVE-2025-71212 through CVE-2025-71217, can be exploited to escalate privileges once an attacker has access to a targeted system. All patches cover on‑premises versions, while SaaS users do not need to act, and the company noted that vulnerabilities were reported via the Zero Day Initiative.
According to TrendAI, exploitation in the wild is not known, though claims have linked some attacks to Chinese hackers, and CISA’s KEV catalog currently lists 10 CVEs connected with Apex flaws.