Trend Micro warns of critical Apex Central RCE vulnerability

Trend Micro released a critical patch for Apex Central addressing CVE-2025-69258, an unauthenticated LoadLibraryEX vulnerability that permits remote attackers to inject malicious DLLs into MsgReceiver.exe (listening on TCP 20001) and achieve SYSTEM-level remote code execution; the update (Critical Patch Build 7190) also fixes two denial-of-service issues and customers are urged to patch and review remote access and perimeter controls.