Trend Micro warns of critical Apex One code execution flaws

Trend Micro patched two critical Apex One management-console path traversal vulnerabilities (CVE-2025-71210 and CVE-2025-71211) that could allow remote code execution if an attacker has access to the management console; customers should apply Critical Patch Build 14136. While no in-the-wild exploitation is reported, prior Apex One zero-days have been abused, and externally exposed consoles are particularly at risk.