Trend Micro Patches Apex Central Zero-Day Exploited in Targeted Attacks


Trend Micro released updates this week for Apex Central’s high-severity arbitrary file upload vulnerability, which has already been exploited in what appears to be targeted assaults.

The security flaw is tracked as CVE-2022-26871 (CVSS score of 8.6) and was identified by Trend Micro’s own research team. It affects both on-premises and Software-as-a-Service (SaaS) versions of the centralised administration console.

Read More…