Public Exploit Released: Critical Trend Micro Flaw Grants SYSTEM Access

Trend Micro released a critical security advisory for Apex Central (on‑premise) addressing CVE-2025-69258 — a LoadLibraryEX-based unauthenticated RCE (CVSS 9.8) that allows attacker-supplied DLL execution as SYSTEM — and two high-severity DoS vulnerabilities (CVE-2025-69259, CVE-2025-69260). Tenable responsibly disclosed the issues and published technical details and PoC code; Trend Micro published Critical Patch Build 7190 and urges customers to update immediately.