Trend Micro Apex Central Hub Server Server-Side Request Forgery Vulnerability

Trend Micro Apex Central contains an information disclosure vulnerability (CVE-2025-71205) that allows authenticated remote attackers to access sensitive data on affected systems, rated as medium severity with a CVSS score of 4.4. While exploitation requires valid authentication credentials, security teams should prioritize patching this vulnerability and review access controls to Apex Central to limit exposure to legitimate users only. Organizations running Trend Micro Apex Central should monitor for any available security updates from the vendor and consider restricting administrative access until patches are deployed.