Trend Micro fixed a remote code execution in Apex Central

Trend Micro patched three vulnerabilities in its Apex Central on-premise console: a critical unauthenticated LoadLibraryEX remote code execution (CVE-2025-69258, CVSS 9.8) that can lead to SYSTEM-level code execution, and two denial-of-service issues (CVE-2025-69259 and CVE-2025-69260, CVSS 7.5). The issues were disclosed by Tenable with PoC code and Trend Micro urges customers to apply fixes, limit remote access, and update security controls; the report also references prior Apex One RCEs that were observed being exploited in the wild.