ГлавнаяУязвимости → CVE-2025-47867
7.5высокая

CVE-2025-47867

Описание

A Local File Inclusion vulnerability in a Trend Micro Apex Central widget in versions below 8.0.6955 could allow an attacker to include arbitrary files to execute as PHP code and lead to remote code execution on affected installations.

Затрагиваемое ПО
Trendmicro Apex centralMicrosoft Windows
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Источники
https://success.trendmicro.com/en-US/solution/KA-0019355https://www.zerodayinitiative.com/advisories/ZDI-25-297/